Upstream information
Description
In the Linux kernel, the following vulnerability has been resolved:blk-throttle: Set BIO_THROTTLED when bio has been throttled
1.In current process, all bio will set the BIO_THROTTLED flag
after __blk_throtl_bio().
2.If bio needs to be throttled, it will start the timer and
stop submit bio directly. Bio will submit in
blk_throtl_dispatch_work_fn() when the timer expires.But in
the current process, if bio is throttled. The BIO_THROTTLED
will be set to bio after timer start. If the bio has been
completed, it may cause use-after-free blow.
BUG: KASAN: use-after-free in blk_throtl_bio+0x12f0/0x2c70
Read of size 2 at addr ffff88801b8902d4 by task fio/26380
dump_stack+0x9b/0xce
print_address_description.constprop.6+0x3e/0x60
kasan_report.cold.9+0x22/0x3a
blk_throtl_bio+0x12f0/0x2c70
submit_bio_checks+0x701/0x1550
submit_bio_noacct+0x83/0xc80
submit_bio+0xa7/0x330
mpage_readahead+0x380/0x500
read_pages+0x1c1/0xbf0
page_cache_ra_unbounded+0x471/0x6f0
do_page_cache_ra+0xda/0x110
ondemand_readahead+0x442/0xae0
page_cache_async_ra+0x210/0x300
generic_file_buffered_read+0x4d9/0x2130
generic_file_read_iter+0x315/0x490
blkdev_read_iter+0x113/0x1b0
aio_read+0x2ad/0x450
io_submit_one+0xc8e/0x1d60
__se_sys_io_submit+0x125/0x350
do_syscall_64+0x2d/0x40
entry_SYSCALL_64_after_hwframe+0x44/0xa9
Allocated by task 26380:
kasan_save_stack+0x19/0x40
__kasan_kmalloc.constprop.2+0xc1/0xd0
kmem_cache_alloc+0x146/0x440
mempool_alloc+0x125/0x2f0
bio_alloc_bioset+0x353/0x590
mpage_alloc+0x3b/0x240
do_mpage_readpage+0xddf/0x1ef0
mpage_readahead+0x264/0x500
read_pages+0x1c1/0xbf0
page_cache_ra_unbounded+0x471/0x6f0
do_page_cache_ra+0xda/0x110
ondemand_readahead+0x442/0xae0
page_cache_async_ra+0x210/0x300
generic_file_buffered_read+0x4d9/0x2130
generic_file_read_iter+0x315/0x490
blkdev_read_iter+0x113/0x1b0
aio_read+0x2ad/0x450
io_submit_one+0xc8e/0x1d60
__se_sys_io_submit+0x125/0x350
do_syscall_64+0x2d/0x40
entry_SYSCALL_64_after_hwframe+0x44/0xa9
Freed by task 0:
kasan_save_stack+0x19/0x40
kasan_set_track+0x1c/0x30
kasan_set_free_info+0x1b/0x30
__kasan_slab_free+0x111/0x160
kmem_cache_free+0x94/0x460
mempool_free+0xd6/0x320
bio_free+0xe0/0x130
bio_put+0xab/0xe0
bio_endio+0x3a6/0x5d0
blk_update_request+0x590/0x1370
scsi_end_request+0x7d/0x400
scsi_io_completion+0x1aa/0xe50
scsi_softirq_done+0x11b/0x240
blk_mq_complete_request+0xd4/0x120
scsi_mq_done+0xf0/0x200
virtscsi_vq_done+0xbc/0x150
vring_interrupt+0x179/0x390
__handle_irq_event_percpu+0xf7/0x490
handle_irq_event_percpu+0x7b/0x160
handle_irq_event+0xcc/0x170
handle_edge_irq+0x215/0xb20
common_interrupt+0x60/0x120
asm_common_interrupt+0x1e/0x40
Fix this by move BIO_THROTTLED set into the queue_lock.
SUSE information
Overall state of this security issue: New
This issue is currently rated as having not set severity.
No SUSE Bugzilla entries cross referenced. No SUSE Security Announcements cross referenced.Status of this issue by product and package
Please note that this evaluation state might be work in progress, incomplete or outdated. Also information for service packs in the LTSS phase is only included for issues meeting the LTSS criteria. If in doubt, feel free to contact us for clarification. The updates are grouped by state of their lifecycle. SUSE product lifecycles are documented on the lifecycle page.
Product(s) | Source package | State |
---|---|---|
Products under general support and receiving all security fixes. | ||
SUSE Linux Enterprise Desktop 15 SP6 | kernel-default | Analysis |
SUSE Linux Enterprise Desktop 15 SP6 | kernel-source | Analysis |
SUSE Linux Enterprise High Performance Computing 15 SP6 | kernel-default | Analysis |
SUSE Linux Enterprise High Performance Computing 15 SP6 | kernel-source | Analysis |
SUSE Linux Enterprise High Performance Computing 15 SP6 | kernel-source-azure | Analysis |
SUSE Linux Enterprise Live Patching 15 SP6 | kernel-default | Analysis |
SUSE Linux Enterprise Live Patching 15 SP6 | kernel-source | Analysis |
SUSE Linux Enterprise Micro 5.1 | kernel-default | Analysis |
SUSE Linux Enterprise Micro 5.1 | kernel-rt | Analysis |
SUSE Linux Enterprise Micro 5.1 | kernel-source | Analysis |
SUSE Linux Enterprise Micro 5.1 | kernel-source-rt | Analysis |
SUSE Linux Enterprise Micro 5.2 | kernel-default | Analysis |
SUSE Linux Enterprise Micro 5.2 | kernel-rt | Analysis |
SUSE Linux Enterprise Micro 5.2 | kernel-source | Analysis |
SUSE Linux Enterprise Micro 5.2 | kernel-source-rt | Analysis |
SUSE Linux Enterprise Micro 5.3 | kernel-default | Analysis |
SUSE Linux Enterprise Micro 5.3 | kernel-rt | Analysis |
SUSE Linux Enterprise Micro 5.3 | kernel-source | Analysis |
SUSE Linux Enterprise Micro 5.3 | kernel-source-rt | Analysis |
SUSE Linux Enterprise Micro 5.4 | kernel-default | Analysis |
SUSE Linux Enterprise Micro 5.4 | kernel-rt | Analysis |
SUSE Linux Enterprise Micro 5.4 | kernel-source | Analysis |
SUSE Linux Enterprise Micro 5.4 | kernel-source-rt | Analysis |
SUSE Linux Enterprise Micro 5.5 | kernel-default | Analysis |
SUSE Linux Enterprise Micro 5.5 | kernel-source | Analysis |
SUSE Linux Enterprise Micro 5.5 | kernel-source-rt | Analysis |
SUSE Linux Enterprise Module for Basesystem 15 SP6 | kernel-default | Analysis |
SUSE Linux Enterprise Module for Basesystem 15 SP6 | kernel-source | Analysis |
SUSE Linux Enterprise Module for Development Tools 15 SP6 | kernel-default | Analysis |
SUSE Linux Enterprise Module for Development Tools 15 SP6 | kernel-source | Analysis |
SUSE Linux Enterprise Module for Public Cloud 15 SP6 | kernel-source-azure | Analysis |
SUSE Linux Enterprise Real Time 15 SP6 | kernel-source-rt | Analysis |
SUSE Linux Enterprise Server 15 SP6 | kernel-default | Analysis |
SUSE Linux Enterprise Server 15 SP6 | kernel-source | Analysis |
SUSE Linux Enterprise Server 15 SP6 | kernel-source-azure | Analysis |
SUSE Linux Enterprise Server for SAP Applications 15 SP6 | kernel-default | Analysis |
SUSE Linux Enterprise Server for SAP Applications 15 SP6 | kernel-source | Analysis |
SUSE Linux Enterprise Server for SAP Applications 15 SP6 | kernel-source-azure | Analysis |
SUSE Linux Enterprise Workstation Extension 15 SP6 | kernel-default | Analysis |
SUSE Linux Enterprise Workstation Extension 15 SP6 | kernel-source | Analysis |
SUSE Linux Micro 6.0 | kernel-default | Analysis |
SUSE Linux Micro 6.0 | kernel-source | Analysis |
SUSE Linux Micro 6.0 | kernel-source-rt | Analysis |
SUSE Linux Micro 6.1 | kernel-default | Analysis |
SUSE Linux Micro 6.1 | kernel-source | Analysis |
SUSE Linux Micro 6.1 | kernel-source-rt | Analysis |
SUSE Manager Proxy 4.3 | kernel-default | Analysis |
SUSE Manager Proxy 4.3 | kernel-source | Analysis |
SUSE Manager Retail Branch Server 4.3 | kernel-default | Analysis |
SUSE Manager Retail Branch Server 4.3 | kernel-source | Analysis |
SUSE Manager Server 4.3 | kernel-default | Analysis |
SUSE Manager Server 4.3 | kernel-source | Analysis |
SUSE Real Time Module 15 SP6 | kernel-source-rt | Analysis |
openSUSE Leap 15.6 | kernel-default | Analysis |
openSUSE Leap 15.6 | kernel-source | Analysis |
openSUSE Leap 15.6 | kernel-source-azure | Analysis |
openSUSE Leap 15.6 | kernel-source-rt | Analysis |
Products under Long Term Service Pack support and receiving important and critical security fixes. | ||
SUSE Linux Enterprise High Availability Extension 12 SP5 | kernel-default | Analysis |
SUSE Linux Enterprise High Availability Extension 12 SP5 | kernel-source | Analysis |
SUSE Linux Enterprise High Performance Computing 15 SP3 | kernel-source | Analysis |
SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS | kernel-source | Analysis |
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS | kernel-default | Analysis |
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS | kernel-source | Analysis |
SUSE Linux Enterprise High Performance Computing 15 SP4 | kernel-source | Analysis |
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS | kernel-default | Analysis |
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS | kernel-source | Analysis |
SUSE Linux Enterprise High Performance Computing 15 SP5 | kernel-source | Analysis |
SUSE Linux Enterprise High Performance Computing 15 SP5 | kernel-source-azure | Analysis |
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS | kernel-default | Analysis |
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS | kernel-source | Analysis |
SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS | kernel-default | Analysis |
SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS | kernel-source | Analysis |
SUSE Linux Enterprise Live Patching 12 SP5 | kernel-default | Analysis |
SUSE Linux Enterprise Live Patching 12 SP5 | kernel-source | Analysis |
SUSE Linux Enterprise Live Patching 15 SP3 | kernel-default | Analysis |
SUSE Linux Enterprise Live Patching 15 SP3 | kernel-source | Analysis |
SUSE Linux Enterprise Live Patching 15 SP4 | kernel-default | Analysis |
SUSE Linux Enterprise Live Patching 15 SP4 | kernel-source | Analysis |
SUSE Linux Enterprise Live Patching 15 SP5 | kernel-default | Analysis |
SUSE Linux Enterprise Live Patching 15 SP5 | kernel-source | Analysis |
SUSE Linux Enterprise Module for Basesystem 15 SP3 | kernel-source | Analysis |
SUSE Linux Enterprise Module for Basesystem 15 SP4 | kernel-source | Analysis |
SUSE Linux Enterprise Module for Basesystem 15 SP5 | kernel-source | Analysis |
SUSE Linux Enterprise Module for Development Tools 15 SP3 | kernel-source | Analysis |
SUSE Linux Enterprise Module for Development Tools 15 SP4 | kernel-source | Analysis |
SUSE Linux Enterprise Module for Development Tools 15 SP5 | kernel-source | Analysis |
SUSE Linux Enterprise Module for Public Cloud 15 SP5 | kernel-source-azure | Analysis |
SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE | kernel-default | Analysis |
SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE | kernel-source | Analysis |
SUSE Linux Enterprise Server 12 SP5 | kernel-source | Analysis |
SUSE Linux Enterprise Server 12 SP5 | kernel-source-azure | Analysis |
SUSE Linux Enterprise Server 12 SP5-LTSS | kernel-default | Analysis |
SUSE Linux Enterprise Server 12 SP5-LTSS | kernel-source | Analysis |
SUSE Linux Enterprise Server 12 SP5-LTSS | kernel-source-azure | Analysis |
SUSE Linux Enterprise Server 15 SP3 | kernel-source | Analysis |
SUSE Linux Enterprise Server 15 SP3-LTSS | kernel-default | Analysis |
SUSE Linux Enterprise Server 15 SP3-LTSS | kernel-source | Analysis |
SUSE Linux Enterprise Server 15 SP4 | kernel-source | Analysis |
SUSE Linux Enterprise Server 15 SP4-LTSS | kernel-default | Analysis |
SUSE Linux Enterprise Server 15 SP4-LTSS | kernel-source | Analysis |
SUSE Linux Enterprise Server 15 SP5 | kernel-source | Analysis |
SUSE Linux Enterprise Server 15 SP5 | kernel-source-azure | Analysis |
SUSE Linux Enterprise Server 15 SP5-LTSS | kernel-default | Analysis |
SUSE Linux Enterprise Server 15 SP5-LTSS | kernel-source | Analysis |
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 | kernel-source | Analysis |
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 | kernel-source-azure | Analysis |
SUSE Linux Enterprise Server for SAP Applications 12 SP5 | kernel-default | Analysis |
SUSE Linux Enterprise Server for SAP Applications 12 SP5 | kernel-source | Analysis |
SUSE Linux Enterprise Server for SAP Applications 15 SP3 | kernel-default | Analysis |
SUSE Linux Enterprise Server for SAP Applications 15 SP3 | kernel-source | Analysis |
SUSE Linux Enterprise Server for SAP Applications 15 SP4 | kernel-default | Analysis |
SUSE Linux Enterprise Server for SAP Applications 15 SP4 | kernel-source | Analysis |
SUSE Linux Enterprise Server for SAP Applications 15 SP5 | kernel-default | Analysis |
SUSE Linux Enterprise Server for SAP Applications 15 SP5 | kernel-source | Analysis |
SUSE Linux Enterprise Server for SAP Applications 15 SP5 | kernel-source-azure | Analysis |
Products past their end of life and not receiving proactive updates anymore. | ||
SUSE CaaS Platform 4.0 | kernel-source | Analysis |
SUSE Enterprise Storage 6 | kernel-source | Analysis |
SUSE Enterprise Storage 7 | kernel-source | Analysis |
SUSE Enterprise Storage 7.1 | kernel-source | Analysis |
SUSE Linux Enterprise Desktop 11 SP4 | kernel-source | Analysis |
SUSE Linux Enterprise Desktop 12 SP2 | kernel-source | Analysis |
SUSE Linux Enterprise Desktop 12 SP4 | kernel-source | Analysis |
SUSE Linux Enterprise Desktop 15 | kernel-source | Analysis |
SUSE Linux Enterprise Desktop 15 SP1 | kernel-source | Analysis |
SUSE Linux Enterprise Desktop 15 SP2 | kernel-source | Analysis |
SUSE Linux Enterprise Desktop 15 SP3 | kernel-source | Analysis |
SUSE Linux Enterprise Desktop 15 SP4 | kernel-source | Analysis |
SUSE Linux Enterprise Desktop 15 SP5 | kernel-source | Analysis |
SUSE Linux Enterprise High Performance Computing 15 | kernel-source | Analysis |
SUSE Linux Enterprise High Performance Computing 15 SP1 | kernel-source | Analysis |
SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS | kernel-source | Analysis |
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS | kernel-source | Analysis |
SUSE Linux Enterprise High Performance Computing 15 SP2 | kernel-source | Analysis |
SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS | kernel-source | Analysis |
SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS | kernel-source | Analysis |
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS | kernel-source | Analysis |
SUSE Linux Enterprise High Performance Computing 15-ESPOS | kernel-source | Analysis |
SUSE Linux Enterprise High Performance Computing 15-LTSS | kernel-source | Analysis |
SUSE Linux Enterprise Micro 5.0 | kernel-default | Analysis |
SUSE Linux Enterprise Module for Basesystem 15 | kernel-source | Analysis |
SUSE Linux Enterprise Module for Basesystem 15 SP1 | kernel-source | Analysis |
SUSE Linux Enterprise Module for Basesystem 15 SP2 | kernel-source | Analysis |
SUSE Linux Enterprise Module for Development Tools 15 | kernel-source | Analysis |
SUSE Linux Enterprise Module for Development Tools 15 SP1 | kernel-source | Analysis |
SUSE Linux Enterprise Module for Development Tools 15 SP2 | kernel-source | Analysis |
SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT | kernel-source | Analysis |
SUSE Linux Enterprise Real Time 15 SP2 | kernel-source | Analysis |
SUSE Linux Enterprise Real Time 15 SP3 | kernel-source | Analysis |
SUSE Linux Enterprise Real Time 15 SP3 | kernel-source-rt | Analysis |
SUSE Linux Enterprise Real Time 15 SP4 | kernel-source | Analysis |
SUSE Linux Enterprise Real Time 15 SP4 | kernel-source-rt | Analysis |
SUSE Linux Enterprise Real Time 15 SP5 | kernel-source-rt | Analysis |
SUSE Linux Enterprise Server 11 SP4 | kernel-source | Analysis |
SUSE Linux Enterprise Server 11 SP4 LTSS | kernel-default | Analysis |
SUSE Linux Enterprise Server 11 SP4 LTSS | kernel-source | Analysis |
SUSE Linux Enterprise Server 11 SP4-LTSS | kernel-source | Analysis |
SUSE Linux Enterprise Server 12 SP2 | kernel-source | Analysis |
SUSE Linux Enterprise Server 12 SP2-BCL | kernel-source | Analysis |
SUSE Linux Enterprise Server 12 SP2-ESPOS | kernel-source | Analysis |
SUSE Linux Enterprise Server 12 SP2-LTSS | kernel-default | Analysis |
SUSE Linux Enterprise Server 12 SP2-LTSS | kernel-source | Analysis |
SUSE Linux Enterprise Server 12 SP4 | kernel-source | Analysis |
SUSE Linux Enterprise Server 12 SP4-ESPOS | kernel-source | Analysis |
SUSE Linux Enterprise Server 12 SP4-LTSS | kernel-default | Analysis |
SUSE Linux Enterprise Server 12 SP4-LTSS | kernel-source | Analysis |
SUSE Linux Enterprise Server 15 | kernel-source | Analysis |
SUSE Linux Enterprise Server 15 SP1 | kernel-source | Analysis |
SUSE Linux Enterprise Server 15 SP1-BCL | kernel-source | Analysis |
SUSE Linux Enterprise Server 15 SP1-LTSS | kernel-default | Analysis |
SUSE Linux Enterprise Server 15 SP1-LTSS | kernel-source | Analysis |
SUSE Linux Enterprise Server 15 SP2 | kernel-source | Analysis |
SUSE Linux Enterprise Server 15 SP2-BCL | kernel-source | Analysis |
SUSE Linux Enterprise Server 15 SP2-LTSS | kernel-default | Analysis |
SUSE Linux Enterprise Server 15 SP2-LTSS | kernel-source | Analysis |
SUSE Linux Enterprise Server 15 SP3-BCL | kernel-source | Analysis |
SUSE Linux Enterprise Server 15-LTSS | kernel-default | Analysis |
SUSE Linux Enterprise Server 15-LTSS | kernel-source | Analysis |
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 | kernel-source | Analysis |
SUSE Linux Enterprise Server for SAP Applications 12 SP2 | kernel-source | Analysis |
SUSE Linux Enterprise Server for SAP Applications 12 SP4 | kernel-source | Analysis |
SUSE Linux Enterprise Server for SAP Applications 15 | kernel-source | Analysis |
SUSE Linux Enterprise Server for SAP Applications 15 SP1 | kernel-source | Analysis |
SUSE Linux Enterprise Server for SAP Applications 15 SP2 | kernel-source | Analysis |
SUSE Manager Proxy 4.0 | kernel-source | Analysis |
SUSE Manager Proxy 4.1 | kernel-source | Analysis |
SUSE Manager Proxy 4.2 | kernel-source | Analysis |
SUSE Manager Retail Branch Server 4.0 | kernel-source | Analysis |
SUSE Manager Retail Branch Server 4.1 | kernel-source | Analysis |
SUSE Manager Retail Branch Server 4.2 | kernel-source | Analysis |
SUSE Manager Server 4.0 | kernel-source | Analysis |
SUSE Manager Server 4.1 | kernel-source | Analysis |
SUSE Manager Server 4.2 | kernel-source | Analysis |
SUSE OpenStack Cloud 7 | kernel-source | Analysis |
SUSE OpenStack Cloud 9 | kernel-source | Analysis |
SUSE OpenStack Cloud Crowbar 9 | kernel-source | Analysis |
SUSE Real Time Module 15 SP3 | kernel-source-rt | Analysis |
SUSE Real Time Module 15 SP4 | kernel-source-rt | Analysis |
SUSE Real Time Module 15 SP5 | kernel-source-rt | Analysis |
openSUSE Leap 15.3 | kernel-source | Analysis |
openSUSE Leap 15.3 | kernel-source-rt | Analysis |
openSUSE Leap 15.4 | kernel-source | Analysis |
openSUSE Leap 15.4 | kernel-source-azure | Analysis |
openSUSE Leap 15.4 | kernel-source-rt | Analysis |
openSUSE Leap 15.5 | kernel-source | Analysis |
openSUSE Leap 15.5 | kernel-source-azure | Analysis |
openSUSE Leap 15.5 | kernel-source-rt | Analysis |
SUSE Timeline for this CVE
CVE page created: Wed Feb 26 04:07:34 2025CVE page last modified: Wed Feb 26 12:00:25 2025