{"id":"CVE-2024-27023","summary":"md: Fix missing release of 'active_io' for flush","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nmd: Fix missing release of 'active_io' for flush\n\nsubmit_flushes\n atomic_set(&mddev-\u003eflush_pending, 1);\n rdev_for_each_rcu(rdev, mddev)\n  atomic_inc(&mddev-\u003eflush_pending);\n  bi-\u003ebi_end_io = md_end_flush\n  submit_bio(bi);\n                        /* flush io is done first */\n                        md_end_flush\n                         if (atomic_dec_and_test(&mddev-\u003eflush_pending))\n                          percpu_ref_put(&mddev-\u003eactive_io)\n                          -\u003e active_io is not released\n\n if (atomic_dec_and_test(&mddev-\u003eflush_pending))\n  -\u003e missing release of active_io\n\nFor consequence, mddev_suspend() will wait for 'active_io' to be zero\nforever.\n\nFix this problem by releasing 'active_io' in submit_flushes() if\n'flush_pending' is decreased to zero.","modified":"2026-04-02T10:06:49.951114Z","published":"2024-05-01T12:49:21.063Z","related":["SUSE-SU-2025:20008-1","SUSE-SU-2025:20028-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/27xxx/CVE-2024-27023.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/02dad157ba11064d073f5499dc33552b227d5d3a"},{"type":"WEB","url":"https://git.kernel.org/stable/c/11f81438927f84edfaaeb5d5f10856c3a1c1fc82"},{"type":"WEB","url":"https://git.kernel.org/stable/c/6b2ff10390b19a2364af622b6666b690443f9f3f"},{"type":"WEB","url":"https://git.kernel.org/stable/c/855678ed8534518e2b428bcbcec695de9ba248e8"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/27xxx/CVE-2024-27023.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-27023"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"f9f2d957a8ea93c73182aebf7de30935a58c027d"},{"fixed":"6b2ff10390b19a2364af622b6666b690443f9f3f"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"530cec617f5a8ba6f26bcbf0d64d75c951d17730"},{"fixed":"02dad157ba11064d073f5499dc33552b227d5d3a"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"c4c2345214b66e2505a26fd2ea58839dd7a1d48d"},{"fixed":"11f81438927f84edfaaeb5d5f10856c3a1c1fc82"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"fa2bbff7b0b4e211fec5e5686ef96350690597b5"},{"fixed":"855678ed8534518e2b428bcbcec695de9ba248e8"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-27023.json"}}],"schema_version":"1.7.5"}