[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2024-40980":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":39,"aliases":40,"duplicate_of":9,"upstream":41,"downstream":42,"duplicates":113,"related":114,"reserved_at":9,"published_at":126,"modified_at":127,"state":128,"summary":129,"references_raw":138,"kevs":185,"epss":186,"epss_history":189,"metrics":421,"affected":427},"CVE-2024-40980","In the Linux kernel, the following vulnerability has been resolved:\n\ndrop_monitor: replace spin_lock by raw_spin_lock\n\ntrace_drop_common() is called with preemption disabled, and it acquires\na spin_lock. This is problematic for RT kernels because spin_locks are\nsleeping locks in this configuration, which causes the following splat:\n\nBUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48\nin_atomic(): 1, irqs_disabled(): 1, non_block: 0, pid: 449, name: rcuc/47\npreempt_count: 1, expected: 0\nRCU nest depth: 2, expected: 2\n5 locks held by rcuc/47/449:\n #0: ff1100086ec30a60 ((softirq_ctrl.lock)){+.+.}-{2:2}, at: __local_bh_disable_ip+0x105/0x210\n #1: ffffffffb394a280 (rcu_read_lock){....}-{1:2}, at: rt_spin_lock+0xbf/0x130\n #2: ffffffffb394a280 (rcu_read_lock){....}-{1:2}, at: __local_bh_disable_ip+0x11c/0x210\n #3: ffffffffb394a160 (rcu_callback){....}-{0:0}, at: rcu_do_batch+0x360/0xc70\n #4: ff1100086ee07520 (&data->lock){+.+.}-{2:2}, at: trace_drop_common.constprop.0+0xb5/0x290\nirq event stamp: 139909\nhardirqs last  enabled at (139908): [\u003Cffffffffb1df2b33>] _raw_spin_unlock_irqrestore+0x63/0x80\nhardirqs last disabled at (139909): [\u003Cffffffffb19bd03d>] trace_drop_common.constprop.0+0x26d/0x290\nsoftirqs last  enabled at (139892): [\u003Cffffffffb07a1083>] __local_bh_enable_ip+0x103/0x170\nsoftirqs last disabled at (139898): [\u003Cffffffffb0909b33>] rcu_cpu_kthread+0x93/0x1f0\nPreemption disabled at:\n[\u003Cffffffffb1de786b>] rt_mutex_slowunlock+0xab/0x2e0\nCPU: 47 PID: 449 Comm: rcuc/47 Not tainted 6.9.0-rc2-rt1+ #7\nHardware name: Dell Inc. PowerEdge R650/0Y2G81, BIOS 1.6.5 04/15/2022\nCall Trace:\n \u003CTASK>\n dump_stack_lvl+0x8c/0xd0\n dump_stack+0x14/0x20\n __might_resched+0x21e/0x2f0\n rt_spin_lock+0x5e/0x130\n ? trace_drop_common.constprop.0+0xb5/0x290\n ? skb_queue_purge_reason.part.0+0x1bf/0x230\n trace_drop_common.constprop.0+0xb5/0x290\n ? preempt_count_sub+0x1c/0xd0\n ? _raw_spin_unlock_irqrestore+0x4a/0x80\n ? __pfx_trace_drop_common.constprop.0+0x10/0x10\n ? rt_mutex_slowunlock+0x26a/0x2e0\n ? skb_queue_purge_reason.part.0+0x1bf/0x230\n ? __pfx_rt_mutex_slowunlock+0x10/0x10\n ? skb_queue_purge_reason.part.0+0x1bf/0x230\n trace_kfree_skb_hit+0x15/0x20\n trace_kfree_skb+0xe9/0x150\n kfree_skb_reason+0x7b/0x110\n skb_queue_purge_reason.part.0+0x1bf/0x230\n ? __pfx_skb_queue_purge_reason.part.0+0x10/0x10\n ? mark_lock.part.0+0x8a/0x520\n...\n\ntrace_drop_common() also disables interrupts, but this is a minor issue\nbecause we could easily replace it with a local_lock.\n\nReplace the spin_lock with raw_spin_lock to avoid sleeping in atomic\ncontext.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-667","Improper Locking","The product does not properly acquire or release a lock on a resource, leading to unexpected resource state changes and behaviors.","weakness","Draft","Class",[19,31,35],{"id":20,"name":21,"techniques":22},"CAPEC-25","Forced Deadlock",[23],{"id":24,"name":25,"tactics":26,"countermeasures":30},"T1499.004","Application or System Exploitation",[27],{"id":28,"name":29},"TA0105","Impact",[],{"id":32,"name":33,"techniques":34},"CAPEC-26","Leveraging Race Conditions",[],{"id":36,"name":37,"techniques":38},"CAPEC-27","Leveraging Race Conditions via Symbolic Links",[],[],[],[],[43,45,47,49,51,53,55,57,59,61,63,65,67,69,71,73,75,77,79,81,83,85,87,89,91,93,95,97,99,101,103,105,107,109,111],{"_key":44},"SUSE-SU-2025:0564-1",{"_key":46},"SUSE-SU-2024:3190-1",{"_key":48},"SUSE-SU-2024:3209-1",{"_key":50},"SUSE-SU-2024:3483-1",{"_key":52},"SUSE-SU-2025:0847-1",{"_key":54},"SUSE-SU-2025:0856-1",{"_key":56},"SUSE-SU-2025:0955-1",{"_key":58},"DLA-4008-1",{"_key":60},"DSA-5730-1",{"_key":62},"DSA-5731-1",{"_key":64},"SUSE-SU-2025:20190-1",{"_key":66},"SUSE-SU-2025:20192-1",{"_key":68},"SUSE-SU-2025:20260-1",{"_key":70},"SUSE-SU-2025:20270-1",{"_key":72},"DEBIAN-CVE-2024-40980",{"_key":74},"UBUNTU-CVE-2024-40980",{"_key":76},"USN-6999-1",{"_key":78},"USN-6999-2",{"_key":80},"USN-7003-1",{"_key":82},"USN-7003-2",{"_key":84},"USN-7003-3",{"_key":86},"USN-7003-4",{"_key":88},"USN-7003-5",{"_key":90},"USN-7004-1",{"_key":92},"USN-7005-1",{"_key":94},"USN-7005-2",{"_key":96},"USN-7006-1",{"_key":98},"USN-7007-1",{"_key":100},"USN-7007-2",{"_key":102},"USN-7007-3",{"_key":104},"USN-7008-1",{"_key":106},"USN-7009-1",{"_key":108},"USN-7009-2",{"_key":110},"USN-7019-1",{"_key":112},"USN-7029-1",[],[115,116,117,118,119,120,121,122,123,124,125],{"_key":44},{"_key":46},{"_key":48},{"_key":50},{"_key":52},{"_key":54},{"_key":56},{"_key":64},{"_key":66},{"_key":68},{"_key":70},"2024-07-12T12:32:15.569Z","2026-05-12T11:56:03.129Z","Modified",{"cisa_kev":130,"cisa_ransomware":130,"cisa_vendor":9,"epss_severity":131,"epss_score":132,"severity":133,"severity_score":134,"severity_version":135,"severity_source":136,"severity_vector":137,"severity_status":128},false,"low",0.00008,"medium",5.5,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",[139,145,149,153,157,161,165,169,173,177,181],{"url":140,"sources":141,"tags":143},"https://git.kernel.org/stable/c/594e47957f3fe034645e6885393ce96c12286334",[142,136],"cve.org",[144],"Patch",{"url":146,"sources":147,"tags":148},"https://git.kernel.org/stable/c/96941f29ebcc1e9cbf570dc903f30374909562f5",[142,136],[144],{"url":150,"sources":151,"tags":152},"https://git.kernel.org/stable/c/b3722fb69468693555f531cddda5c30444726dac",[142,136],[144],{"url":154,"sources":155,"tags":156},"https://git.kernel.org/stable/c/f251ccef1d864790e5253386e95544420b7cd8f3",[142,136],[144],{"url":158,"sources":159,"tags":160},"https://git.kernel.org/stable/c/76ce2f9125244e1708d29c1d3f9d1d50b347bda0",[142,136],[144],{"url":162,"sources":163,"tags":164},"https://git.kernel.org/stable/c/07ea878684dfb78a9d4f564c39d07e855a9e242e",[142,136],[144],{"url":166,"sources":167,"tags":168},"https://git.kernel.org/stable/c/f1e197a665c2148ebc25fe09c53689e60afea195",[142,136],[144],{"url":170,"sources":171,"tags":172},"https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html",[142,136],[],{"url":174,"sources":175,"tags":176},"https://cert-portal.siemens.com/productcert/html/ssa-265688.html",[142,136],[],{"url":178,"sources":179,"tags":180},"https://cert-portal.siemens.com/productcert/html/ssa-613116.html",[142,136],[],{"url":182,"sources":183,"tags":184},"https://cert-portal.siemens.com/productcert/html/ssa-355557.html",[142,136],[],[],{"date":187,"score":132,"percentile":188},"2026-06-03",0.00699,[190,194,197,200,202,204,207,210,212,215,217,219,222,224,226,230,233,236,239,241,244,246,248,251,253,256,259,262,264,267,270,273,276,278,280,283,286,289,292,295,297,300,303,305,307,310,313,316,318,320,323,326,328,330,333,335,337,339,342,345,348,350,353,356,359,361,364,367,369,371,373,376,378,380,382,384,386,388,390,392,394,396,398,400,403,406,409,412,415,418],{"date":191,"score":192,"percentile":193},"2025-11-04",0.00007,0.00386,{"date":195,"score":192,"percentile":196},"2025-11-05",0.00387,{"date":198,"score":192,"percentile":199},"2025-11-06",0.00388,{"date":201,"score":192,"percentile":199},"2025-11-07",{"date":203,"score":192,"percentile":193},"2025-11-08",{"date":205,"score":192,"percentile":206},"2025-11-09",0.00385,{"date":208,"score":192,"percentile":209},"2025-11-10",0.00384,{"date":211,"score":192,"percentile":209},"2025-11-11",{"date":213,"score":192,"percentile":214},"2025-11-12",0.0038,{"date":216,"score":192,"percentile":214},"2025-11-13",{"date":218,"score":192,"percentile":214},"2025-11-14",{"date":220,"score":192,"percentile":221},"2025-11-15",0.00381,{"date":223,"score":192,"percentile":221},"2025-11-16",{"date":225,"score":192,"percentile":221},"2025-11-17",{"date":227,"score":228,"percentile":229},"2025-11-18",0.00055,0.12643,{"date":231,"score":228,"percentile":232},"2025-11-19",0.12663,{"date":234,"score":228,"percentile":235},"2025-11-20",0.12677,{"date":237,"score":192,"percentile":238},"2025-11-21",0.0039,{"date":240,"score":192,"percentile":238},"2025-11-22",{"date":242,"score":192,"percentile":243},"2025-11-23",0.00391,{"date":245,"score":192,"percentile":243},"2025-11-24",{"date":247,"score":192,"percentile":243},"2025-11-25",{"date":249,"score":192,"percentile":250},"2025-11-26",0.00389,{"date":252,"score":192,"percentile":238},"2025-11-27",{"date":254,"score":192,"percentile":255},"2025-11-28",0.00394,{"date":257,"score":192,"percentile":258},"2025-11-29",0.00396,{"date":260,"score":192,"percentile":261},"2025-11-30",0.00397,{"date":263,"score":192,"percentile":255},"2025-12-01",{"date":265,"score":192,"percentile":266},"2025-12-02",0.00392,{"date":268,"score":192,"percentile":269},"2025-12-03",0.00395,{"date":271,"score":192,"percentile":272},"2025-12-04",0.004,{"date":274,"score":192,"percentile":275},"2025-12-05",0.00401,{"date":277,"score":192,"percentile":272},"2025-12-06",{"date":279,"score":192,"percentile":275},"2025-12-07",{"date":281,"score":192,"percentile":282},"2025-12-08",0.00406,{"date":284,"score":192,"percentile":285},"2025-12-09",0.00417,{"date":287,"score":192,"percentile":288},"2025-12-10",0.00416,{"date":290,"score":192,"percentile":291},"2025-12-11",0.00419,{"date":293,"score":192,"percentile":294},"2025-12-12",0.00422,{"date":296,"score":192,"percentile":294},"2025-12-13",{"date":298,"score":192,"percentile":299},"2025-12-14",0.0042,{"date":301,"score":192,"percentile":302},"2025-12-15",0.00418,{"date":304,"score":192,"percentile":291},"2025-12-16",{"date":306,"score":192,"percentile":285},"2025-12-17",{"date":308,"score":192,"percentile":309},"2025-12-18",0.00415,{"date":311,"score":192,"percentile":312},"2025-12-19",0.00413,{"date":314,"score":192,"percentile":315},"2025-12-20",0.00414,{"date":317,"score":192,"percentile":312},"2025-12-21",{"date":319,"score":192,"percentile":285},"2025-12-22",{"date":321,"score":192,"percentile":322},"2025-12-23",0.00421,{"date":324,"score":192,"percentile":325},"2025-12-24",0.00423,{"date":327,"score":192,"percentile":325},"2025-12-25",{"date":329,"score":192,"percentile":325},"2025-12-26",{"date":331,"score":132,"percentile":332},"2025-12-27",0.00509,{"date":334,"score":192,"percentile":294},"2025-12-28",{"date":336,"score":192,"percentile":322},"2025-12-29",{"date":338,"score":192,"percentile":302},"2025-12-30",{"date":340,"score":132,"percentile":341},"2025-12-31",0.00506,{"date":343,"score":132,"percentile":344},"2026-01-01",0.00507,{"date":346,"score":132,"percentile":347},"2026-01-02",0.00511,{"date":349,"score":132,"percentile":347},"2026-01-03",{"date":351,"score":132,"percentile":352},"2026-01-04",0.00499,{"date":354,"score":132,"percentile":355},"2026-01-05",0.00501,{"date":357,"score":132,"percentile":358},"2026-01-06",0.005,{"date":360,"score":132,"percentile":358},"2026-01-07",{"date":362,"score":132,"percentile":363},"2026-01-08",0.00502,{"date":365,"score":132,"percentile":366},"2026-01-09",0.00508,{"date":368,"score":192,"percentile":299},"2026-01-10",{"date":370,"score":192,"percentile":288},"2026-01-11",{"date":372,"score":192,"percentile":312},"2026-01-12",{"date":374,"score":192,"percentile":375},"2026-01-13",0.00411,{"date":377,"score":192,"percentile":309},"2026-01-14",{"date":379,"score":192,"percentile":309},"2026-01-15",{"date":381,"score":192,"percentile":288},"2026-01-16",{"date":383,"score":192,"percentile":288},"2026-01-17",{"date":385,"score":192,"percentile":291},"2026-01-18",{"date":387,"score":192,"percentile":285},"2026-01-19",{"date":389,"score":192,"percentile":309},"2026-01-20",{"date":391,"score":192,"percentile":288},"2026-01-21",{"date":393,"score":192,"percentile":285},"2026-01-22",{"date":395,"score":192,"percentile":291},"2026-01-23",{"date":397,"score":192,"percentile":322},"2026-01-24",{"date":399,"score":192,"percentile":325},"2026-01-25",{"date":401,"score":192,"percentile":402},"2026-01-26",0.00425,{"date":404,"score":192,"percentile":405},"2026-01-27",0.00429,{"date":407,"score":192,"percentile":408},"2026-01-28",0.00431,{"date":410,"score":192,"percentile":411},"2026-01-29",0.00434,{"date":413,"score":192,"percentile":414},"2026-01-30",0.00444,{"date":416,"score":192,"percentile":417},"2026-01-31",0.00448,{"date":419,"score":192,"percentile":420},"2026-02-01",0.0045,[422],{"source":136,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":423,"cvss_v4_0":9},{"baseScore":134,"baseSeverity":424,"vectorString":137,"impactScore":425,"exploitabilityScore":426},"MEDIUM",6,4.6,[428,460],{"ecosystem":9,"name":429,"vendor":430,"product":430,"cpe_part":431,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":432},"Linux","linux","a",[433,440,443,446,449,452,455,458],{"version":434,"is_range":435,"range_type":142,"version_start":436,"version_start_type":437,"version_end":438,"version_end_type":439,"fixed_in":9},">= 4ea7e38696c7e798c47ebbecadfd392f23f814f9, \u003C 594e47957f3fe034645e6885393ce96c12286334",true,"4ea7e38696c7e798c47ebbecadfd392f23f814f9","including","594e47957f3fe034645e6885393ce96c12286334","excluding",{"version":441,"is_range":435,"range_type":142,"version_start":436,"version_start_type":437,"version_end":442,"version_end_type":439,"fixed_in":9},">= 4ea7e38696c7e798c47ebbecadfd392f23f814f9, \u003C 96941f29ebcc1e9cbf570dc903f30374909562f5","96941f29ebcc1e9cbf570dc903f30374909562f5",{"version":444,"is_range":435,"range_type":142,"version_start":436,"version_start_type":437,"version_end":445,"version_end_type":439,"fixed_in":9},">= 4ea7e38696c7e798c47ebbecadfd392f23f814f9, \u003C b3722fb69468693555f531cddda5c30444726dac","b3722fb69468693555f531cddda5c30444726dac",{"version":447,"is_range":435,"range_type":142,"version_start":436,"version_start_type":437,"version_end":448,"version_end_type":439,"fixed_in":9},">= 4ea7e38696c7e798c47ebbecadfd392f23f814f9, \u003C f251ccef1d864790e5253386e95544420b7cd8f3","f251ccef1d864790e5253386e95544420b7cd8f3",{"version":450,"is_range":435,"range_type":142,"version_start":436,"version_start_type":437,"version_end":451,"version_end_type":439,"fixed_in":9},">= 4ea7e38696c7e798c47ebbecadfd392f23f814f9, \u003C 76ce2f9125244e1708d29c1d3f9d1d50b347bda0","76ce2f9125244e1708d29c1d3f9d1d50b347bda0",{"version":453,"is_range":435,"range_type":142,"version_start":436,"version_start_type":437,"version_end":454,"version_end_type":439,"fixed_in":9},">= 4ea7e38696c7e798c47ebbecadfd392f23f814f9, \u003C 07ea878684dfb78a9d4f564c39d07e855a9e242e","07ea878684dfb78a9d4f564c39d07e855a9e242e",{"version":456,"is_range":435,"range_type":142,"version_start":436,"version_start_type":437,"version_end":457,"version_end_type":439,"fixed_in":9},">= 4ea7e38696c7e798c47ebbecadfd392f23f814f9, \u003C f1e197a665c2148ebc25fe09c53689e60afea195","f1e197a665c2148ebc25fe09c53689e60afea195",{"version":459,"is_range":130,"range_type":142,"version_start":459,"version_start_type":437,"version_end":459,"version_end_type":437,"fixed_in":9},"2.6.31",{"ecosystem":9,"name":461,"vendor":430,"product":462,"cpe_part":463,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":464},"linux kernel","linux_kernel","o",[465,469,473,477,481,485],{"version":466,"is_range":435,"range_type":467,"version_start":9,"version_start_type":9,"version_end":468,"version_end_type":439,"fixed_in":9},"lt5.4.279","cpe","5.4.279",{"version":470,"is_range":435,"range_type":467,"version_start":471,"version_start_type":437,"version_end":472,"version_end_type":439,"fixed_in":9},"gte5.5_lt5.10.221","5.5","5.10.221",{"version":474,"is_range":435,"range_type":467,"version_start":475,"version_start_type":437,"version_end":476,"version_end_type":439,"fixed_in":9},"gte5.11_lt5.15.162","5.11","5.15.162",{"version":478,"is_range":435,"range_type":467,"version_start":479,"version_start_type":437,"version_end":480,"version_end_type":439,"fixed_in":9},"gte5.16_lt6.1.96","5.16","6.1.96",{"version":482,"is_range":435,"range_type":467,"version_start":483,"version_start_type":437,"version_end":484,"version_end_type":439,"fixed_in":9},"gte6.2_lt6.6.36","6.2","6.6.36",{"version":486,"is_range":435,"range_type":467,"version_start":487,"version_start_type":437,"version_end":488,"version_end_type":439,"fixed_in":9},"gte6.7_lt6.9.7","6.7","6.9.7"]