{"id":"CVE-2024-41063","summary":"Bluetooth: hci_core: cancel all works upon hci_unregister_dev()","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_core: cancel all works upon hci_unregister_dev()\n\nsyzbot is reporting that calling hci_release_dev() from hci_error_reset()\ndue to hci_dev_put() from hci_error_reset() can cause deadlock at\ndestroy_workqueue(), for hci_error_reset() is called from\nhdev-\u003ereq_workqueue which destroy_workqueue() needs to flush.\n\nWe need to make sure that hdev-\u003e{rx_work,cmd_work,tx_work} which are\nqueued into hdev-\u003eworkqueue and hdev-\u003e{power_on,error_reset} which are\nqueued into hdev-\u003ereq_workqueue are no longer running by the moment\n\n       destroy_workqueue(hdev-\u003eworkqueue);\n       destroy_workqueue(hdev-\u003ereq_workqueue);\n\nare called from hci_release_dev().\n\nCall cancel_work_sync() on these work items from hci_unregister_dev()\nas soon as hdev-\u003elist is removed from hci_dev_list.","modified":"2026-04-16T04:35:30.455787866Z","published":"2024-07-29T14:57:25.154Z","related":["SUSE-SU-2024:2892-1","SUSE-SU-2024:2894-1","SUSE-SU-2024:2901-1","SUSE-SU-2024:2939-1","SUSE-SU-2024:2940-1","SUSE-SU-2024:2947-1","SUSE-SU-2024:3194-1","SUSE-SU-2024:3195-1","SUSE-SU-2024:3383-1","SUSE-SU-2025:20044-1","SUSE-SU-2025:20047-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/41xxx/CVE-2024-41063.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/0d151a103775dd9645c78c97f77d6e2a5298d913"},{"type":"WEB","url":"https://git.kernel.org/stable/c/3f939bd73fed12dddc2a32a76116c19ca47c7678"},{"type":"WEB","url":"https://git.kernel.org/stable/c/48542881997e17b49dc16b93fe910e0cfcf7a9f9"},{"type":"WEB","url":"https://git.kernel.org/stable/c/96600c2e5ee8213dbab5df1617293d8e847bb4fa"},{"type":"WEB","url":"https://git.kernel.org/stable/c/9cfc84b1d464cc024286f42a090718f9067b80ed"},{"type":"WEB","url":"https://git.kernel.org/stable/c/d2ce562a5aff1dcd0c50d9808ea825ef90da909f"},{"type":"WEB","url":"https://git.kernel.org/stable/c/d6cbce18370641a21dd889e8613d8153df15eb39"},{"type":"WEB","url":"https://git.kernel.org/stable/c/ddeda6ca5f218b668b560d90fc31ae469adbfd92"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/41xxx/CVE-2024-41063.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-41063"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"e0b278650f07acf2e0932149183458468a731c03"},{"fixed":"48542881997e17b49dc16b93fe910e0cfcf7a9f9"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"98fb98fd37e42fd4ce13ff657ea64503e24b6090"},{"fixed":"9cfc84b1d464cc024286f42a090718f9067b80ed"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"6dd0a9dfa99f8990a08eb8fdd8e79bee31c7d8e2"},{"fixed":"ddeda6ca5f218b668b560d90fc31ae469adbfd92"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"da4569d450b193e39e87119fd316c0291b585d14"},{"fixed":"d2ce562a5aff1dcd0c50d9808ea825ef90da909f"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"45085686b9559bfbe3a4f41d3d695a520668f5e1"},{"fixed":"96600c2e5ee8213dbab5df1617293d8e847bb4fa"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"2ab9a19d896f5a0dd386e1f001c5309bc35f433b"},{"fixed":"d6cbce18370641a21dd889e8613d8153df15eb39"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"2449007d3f73b2842c9734f45f0aadb522daf592"},{"fixed":"3f939bd73fed12dddc2a32a76116c19ca47c7678"},{"fixed":"0d151a103775dd9645c78c97f77d6e2a5298d913"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"0"},{"last_affected":"dd594cdc24f2e48dab441732e6dfcafd6b0711d1"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-41063.json"}}],"schema_version":"1.7.5"}