CVE-2024-38556

net/mlx5: Add a timeout to acquire the command queue semaphore

References

Notes

 carnil> Introduced in 8e715cd613a1 ("net/mlx5: Set command entry semaphore up once got
 carnil> index free"). Vulnerable versions: 5.4.174 5.10.94 5.15.17 5.16.3 5.17-rc1.

Bugs

Status

Branch	Status
upstream	released (6.10-rc1) [485d65e1357123a697c591a5aeb773994b247ad7]
6.18-upstream-stable	N/A "Fixed before branching point"
6.17-upstream-stable	N/A "Fixed before branching point"
6.12-upstream-stable	N/A "Fixed before branching point"
6.9-upstream-stable	released (6.9.3) [94024332a129c6e4275569d85c0c1bfb2ae2d71b]
6.6-upstream-stable	released (6.6.33) [f9caccdd42e999b74303c9b0643300073ed5d319]
6.1-upstream-stable	released (6.1.93) [4baae687a20ef2b82fde12de3c04461e6f2521d6]
5.10-upstream-stable	needed
4.19-upstream-stable	N/A "Vulnerable code not present"
sid	released (6.8.12-1)
6.12-trixie-security	N/A "Fixed before branching point"
6.1-bookworm-security	released (6.1.94-1)
5.10-bullseye-security	needed
4.19-buster-security	N/A "Vulnerable code not present"