CVE-2024-56690

MEDIUM EPSS 8.2%
Published Dec 28, 20241y ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Dec 28, 2024 1y ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: crypto: pcrypt - Call crypto layer directly when padata_do_parallel() return -EBUSY Since commit 8f4f68e788c3 ("crypto: pcrypt - Fix hungtask for PADATA_RESET"), the pcrypt encryption and decryption operations return -EAGAIN when the CPU goes online or offline. In alg_test(), a WARN is generated when pcrypt_aead_decrypt() or pcrypt_aead_encrypt() returns -EAGAIN, the unnecessary panic will occur when panic_on_warn set 1. Fix this issue by calling crypto layer directly without parallelization in that case.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
8.2% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 10

VendorProductVersionRange
linuxlinux_kernel*≥4.14.331  –  <4.15
linuxlinux_kernel*≥4.19.300  –  <4.19.325
linuxlinux_kernel*≥5.4.262  –  <5.4.287
linuxlinux_kernel*≥5.10.202  –  <5.10.231
linuxlinux_kernel*≥5.15.140  –  <5.15.174
linuxlinux_kernel*≥6.1.64  –  <6.1.120
linuxlinux_kernel*≥6.5.13  –  <6.6
linuxlinux_kernel*≥6.6.3  –  <6.6.64
linuxlinux_kernel*≥6.7  –  <6.11.11
linuxlinux_kernel*≥6.12  –  <6.12.2

References 11

  • git.kernel.org https://git.kernel.org/stable/c/5edae7a9a35606017ee6e05911c290acee9fee5a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/662f2f13e66d3883b9238b0b96b17886179e60e2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7ddab756f2de5b7b43c122ebebdf37f400fb2b6f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/92834692a539b5b7f409e467a14667d64713b732
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/96001f52ae8c70e2c736d3e1e5dc53d5b521e5ca
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a8e0074ffb38c9a5964a221bb998034d016c93a2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a92ccd3618e42333ac6f150ecdac14dca298bc7a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/dd8bf8eb5beba1e7c3b11a9a5a58ccbf345a69e6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/fca8aed12218f96b38e374ff264d78ea1fbd23cc
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/03/msg00001.html
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/5edae7a9a35606017ee6e05911c290acee9fee5a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/662f2f13e66d3883b9238b0b96b17886179e60e2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7ddab756f2de5b7b43c122ebebdf37f400fb2b6f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/92834692a539b5b7f409e467a14667d64713b732
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/96001f52ae8c70e2c736d3e1e5dc53d5b521e5ca
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a8e0074ffb38c9a5964a221bb998034d016c93a2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a92ccd3618e42333ac6f150ecdac14dca298bc7a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/dd8bf8eb5beba1e7c3b11a9a5a58ccbf345a69e6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/fca8aed12218f96b38e374ff264d78ea1fbd23cc
    Patch