In the Linux kernel, the following vulnerability has been resolved:
mm/mglru: fix div-by-zero in vmpressure_calc_level()
evict_folios() uses a second pass to reclaim folios that have gone through
page writeback and become clean before it finishes the first pass, since
folio_rotate_reclaimable() cannot handle those folios due to the
isolation.
The second pass tries to avoid potential double counting by deducting
scan_control->nr_scanned. However, this can result in underflow of
nr_scanned, under a condition where shrink_folio_list() does not increment
nr_scanned, i.e., when folio_trylock() fails.
The underflow can cause the divisor, i.e., scale=scanned+reclaimed in
vmpressure_calc_level(), to become zero, resulting in the following crash:
[exception RIP: vmpressure_work_fn+101]
process_one_work at ffffffffa3313f2b
Since scan_control->nr_scanned has no established semantics, the potential
double counting has minimal risks. Therefore, fix the problem by not
deducting scan_control->nr_scanned in evict_folios().
References
Configurations
Configuration 1 (hide)
|
History
22 Aug 2024, 15:52
Type | Values Removed | Values Added |
---|---|---|
References | () https://git.kernel.org/stable/c/8b671fe1a879923ecfb72dda6caf01460dd885ef - Patch | |
References | () https://git.kernel.org/stable/c/8de7bf77f21068a5f602bb1e59adbc5ab533509d - Patch | |
References | () https://git.kernel.org/stable/c/a39e38be632f0e1c908d70d1c9cd071c03faf895 - Patch | |
References | () https://git.kernel.org/stable/c/d6510f234c7d117790397f9bb150816b0a954a04 - Patch | |
CWE | CWE-369 | |
CPE | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.5 |
First Time |
Linux linux Kernel
Linux |
19 Aug 2024, 12:59
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
17 Aug 2024, 09:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-08-17 09:15
Updated : 2024-08-22 15:52
NVD link : CVE-2024-42316
Mitre link : CVE-2024-42316
CVE.ORG link : CVE-2024-42316
JSON object : View
Products Affected
linux
- linux_kernel
CWE
CWE-369
Divide By Zero