CVE-2024-27005

interconnect: Don't access req_list while it's being manipulated

References

https://cve.org/CVERecord/?id=CVE-2024-27005

Notes

 carnil> Introduced in af42269c3523 ("interconnect: Fix locking for runpm vs reclaim").
 carnil> Vulnerable versions: 5.15.133 5.15.151 6.1.55 6.1.81 6.5.5 6.6-rc1.

Bugs

Status

Branch	Status
4.19-buster-security	N/A "Vulnerable code not present"
4.19-upstream-stable	N/A "Vulnerable code not present"
5.10-bullseye-security	N/A "Vulnerable code not present"
5.10-upstream-stable	N/A "Vulnerable code not present"
6.1-bookworm-security	needed
6.1-upstream-stable	needed
6.6-upstream-stable	released (6.6.29) [d0d04efa2e367921654b5106cc5c05e3757c2b42]
6.8-upstream-stable	released (6.8.8) [4c65507121ea8e0b47fae6d2049c8688390d46b6]
sid	needed
upstream	released (6.9-rc5) [de1bf25b6d771abdb52d43546cf57ad775fb68a1]