Linux Kernel Deadlock Vulnerability in DRM Scheduler Entity Management

A deadlock vulnerability has been identified in the Linux kernel's Direct Rendering Manager (DRM) scheduler. This issue arises in the 'drm_sched_entity_kill_jobs_cb' function, which can be called in an interrupt context, leading to a potential deadlock scenario. The problem occurs when one CPU thread holds a lock and then disables interrupts, while another thread, in the meantime, tries to acquire the same lock, creating a deadlock situation. The vulnerability affects several versions of the Linux kernel.

Impact

Exploitation of this vulnerability leads to a deadlock condition, where the system becomes unresponsive due to two processes waiting on each other to release locks.

Reproduction

The vulnerability can be reproduced by invoking the 'drm_sched_entity_kill_jobs_cb' function in an interrupt context, while another process is accessing job dependencies through the 'xa_' functions that do not disable interrupts. This can be simulated by creating a scenario where these functions are called concurrently, causing the deadlock.

Remediation

The vulnerability has been addressed in the Linux kernel. Users should upgrade to the latest version where this issue has been fixed.