CVE-2024-37026

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Only use reserved BCS instances for usm migrate exec queue The GuC context scheduling queue is 2 entires deep, thus it is possible for a migration job to be stuck behind a fault if migration exec queue shares engines with user jobs. This can deadlock as the migrate exec queue is required to service page faults. Avoid deadlock by only using reserved BCS instances for usm migrate exec queue. (cherry picked from commit 04f4a70a183a688a60fe3882d6e4236ea02cfc67)

CVSS v3 5.5 MEDIUM

5.5^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://git.kernel.org/stable/c/92deed4a9bfd9ef187764225bba530116c49e15c	Patch
https://git.kernel.org/stable/c/c8ea2c31f5ea437199b239d76ad5db27343edb0c	Patch
https://git.kernel.org/stable/c/92deed4a9bfd9ef187764225bba530116c49e15c	Patch
https://git.kernel.org/stable/c/c8ea2c31f5ea437199b239d76ad5db27343edb0c	Patch

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel:6.10:rc1::::::

History

03 Oct 2025, 15:08

Type	Values Removed	Values Added
CWE		NVD-CWE-noinfo
First Time		Linux Linux linux Kernel
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 5.5
References	~~() https://git.kernel.org/stable/c/92deed4a9bfd9ef187764225bba530116c49e15c -~~	() https://git.kernel.org/stable/c/92deed4a9bfd9ef187764225bba530116c49e15c - Patch
References	~~() https://git.kernel.org/stable/c/c8ea2c31f5ea437199b239d76ad5db27343edb0c -~~	() https://git.kernel.org/stable/c/c8ea2c31f5ea437199b239d76ad5db27343edb0c - Patch
CPE		cpe:2.3:o:linux:linux_kernel:6.10:rc1:::::: cpe:2.3:o:linux:linux_kernel::::::::

Information

Published : 2024-06-24 14:15

Updated : 2025-10-03 15:08

NVD link : CVE-2024-37026

Mitre link : CVE-2024-37026

CVE.ORG link : CVE-2024-37026

JSON object : View

Products Affected

linux

linux_kernel

CWE

NVD-CWE-noinfo

{"id": "CVE-2024-37026", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.5, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 1.8}]}, "published": "2024-06-24T14:15:12.307", "references": [{"url": "https://git.kernel.org/stable/c/92deed4a9bfd9ef187764225bba530116c49e15c", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/c8ea2c31f5ea437199b239d76ad5db27343edb0c", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/92deed4a9bfd9ef187764225bba530116c49e15c", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://git.kernel.org/stable/c/c8ea2c31f5ea437199b239d76ad5db27343edb0c", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe: Only use reserved BCS instances for usm migrate exec queue\n\nThe GuC context scheduling queue is 2 entires deep, thus it is possible\nfor a migration job to be stuck behind a fault if migration exec queue\nshares engines with user jobs. This can deadlock as the migrate exec\nqueue is required to service page faults. Avoid deadlock by only using\nreserved BCS instances for usm migrate exec queue.\n\n(cherry picked from commit 04f4a70a183a688a60fe3882d6e4236ea02cfc67)"}, {"lang": "es", "value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: drm/xe: solo use instancias BCS reservadas para la cola ejecutiva de migraci\u00f3n de usm. La cola de programaci\u00f3n de contexto GuC tiene 2 enteros de profundidad, por lo tanto, es posible que un trabajo de migraci\u00f3n quede atascado detr\u00e1s de una falla si la cola ejecutiva de migraci\u00f3n comparte motores con los trabajos de los usuarios. Esto puede bloquearse ya que se requiere la cola de ejecuci\u00f3n de migraci\u00f3n para solucionar los errores de la p\u00e1gina. Evite el punto muerto utilizando \u00fanicamente instancias BCS reservadas para la cola ejecutiva de migraci\u00f3n de usm. (cereza escogida del commit 04f4a70a183a688a60fe3882d6e4236ea02cfc67)"}], "lastModified": "2025-10-03T15:08:31.047", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "02BBA32B-4F0B-43D9-BA15-A273D6A896D5", "versionEndExcluding": "6.9.4", "versionStartIncluding": "6.8"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:6.10:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2EBB4392-5FA6-4DA9-9772-8F9C750109FA"}], "operator": "OR"}]}], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}