[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-DEBIAN-CVE-2024-40980":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T14:53:31.930Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":16,"duplicates":23,"related":24,"reserved_at":9,"published_at":25,"modified_at":26,"state":9,"summary":27,"references_raw":29,"kevs":36,"epss":9,"epss_history":37,"metrics":38,"affected":45},"DEBIAN-CVE-2024-40980","In the Linux kernel, the following vulnerability has been resolved:  drop_monitor: replace spin_lock by raw_spin_lock  trace_drop_common() is called with preemption disabled, and it acquires a spin_lock. This is problematic for RT kernels because spin_locks are sleeping locks in this configuration, which causes the following splat:  BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48 in_atomic(): 1, irqs_disabled(): 1, non_block: 0, pid: 449, name: rcuc/47 preempt_count: 1, expected: 0 RCU nest depth: 2, expected: 2 5 locks held by rcuc/47/449:  #0: ff1100086ec30a60 ((softirq_ctrl.lock)){+.+.}-{2:2}, at: __local_bh_disable_ip+0x105/0x210  #1: ffffffffb394a280 (rcu_read_lock){....}-{1:2}, at: rt_spin_lock+0xbf/0x130  #2: ffffffffb394a280 (rcu_read_lock){....}-{1:2}, at: __local_bh_disable_ip+0x11c/0x210  #3: ffffffffb394a160 (rcu_callback){....}-{0:0}, at: rcu_do_batch+0x360/0xc70  #4: ff1100086ee07520 (&data->lock){+.+.}-{2:2}, at: trace_drop_common.constprop.0+0xb5/0x290 irq event stamp: 139909 hardirqs last  enabled at (139908): [\u003Cffffffffb1df2b33>] _raw_spin_unlock_irqrestore+0x63/0x80 hardirqs last disabled at (139909): [\u003Cffffffffb19bd03d>] trace_drop_common.constprop.0+0x26d/0x290 softirqs last  enabled at (139892): [\u003Cffffffffb07a1083>] __local_bh_enable_ip+0x103/0x170 softirqs last disabled at (139898): [\u003Cffffffffb0909b33>] rcu_cpu_kthread+0x93/0x1f0 Preemption disabled at: [\u003Cffffffffb1de786b>] rt_mutex_slowunlock+0xab/0x2e0 CPU: 47 PID: 449 Comm: rcuc/47 Not tainted 6.9.0-rc2-rt1+ #7 Hardware name: Dell Inc. PowerEdge R650/0Y2G81, BIOS 1.6.5 04/15/2022 Call Trace:  \u003CTASK>  dump_stack_lvl+0x8c/0xd0  dump_stack+0x14/0x20  __might_resched+0x21e/0x2f0  rt_spin_lock+0x5e/0x130  ? trace_drop_common.constprop.0+0xb5/0x290  ? skb_queue_purge_reason.part.0+0x1bf/0x230  trace_drop_common.constprop.0+0xb5/0x290  ? preempt_count_sub+0x1c/0xd0  ? _raw_spin_unlock_irqrestore+0x4a/0x80  ? __pfx_trace_drop_common.constprop.0+0x10/0x10  ? rt_mutex_slowunlock+0x26a/0x2e0  ? skb_queue_purge_reason.part.0+0x1bf/0x230  ? __pfx_rt_mutex_slowunlock+0x10/0x10  ? skb_queue_purge_reason.part.0+0x1bf/0x230  trace_kfree_skb_hit+0x15/0x20  trace_kfree_skb+0xe9/0x150  kfree_skb_reason+0x7b/0x110  skb_queue_purge_reason.part.0+0x1bf/0x230  ? __pfx_skb_queue_purge_reason.part.0+0x10/0x10  ? mark_lock.part.0+0x8a/0x520 ...  trace_drop_common() also disables interrupts, but this is a minor issue because we could easily replace it with a local_lock.  Replace the spin_lock with raw_spin_lock to avoid sleeping in atomic context.",null,[],[],[],[14],{"_key":15},"CVE-2024-40980",[17,19,21],{"_key":18},"DLA-4008-1",{"_key":20},"DSA-5730-1",{"_key":22},"DSA-5731-1",[],[],"2024-07-12T13:15:19.550Z","2026-04-28T20:28:17.624903Z",{"cisa_kev":28,"cisa_ransomware":28,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[30],{"url":31,"sources":32,"tags":34},"https://security-tracker.debian.org/tracker/CVE-2024-40980",[33],"osv_debian",[35],"Advisory",[],[],[39],{"source":33,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":40,"cvss_v4_0":9},{"baseScore":41,"baseSeverity":9,"vectorString":42,"impactScore":43,"exploitabilityScore":44},5.5,"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",6,4.6,[46,65],{"ecosystem":47,"name":48,"vendor":49,"product":48,"cpe_part":9,"purl_type":50,"purl_namespace":49,"purl_name":48,"source":9,"versions":51},"Debian","linux","debian","deb",[52,58,61,64],{"version":53,"is_range":54,"range_type":55,"version_start":9,"version_start_type":9,"version_end":56,"version_end_type":57,"fixed_in":9},"lt5_10_221_1",true,"ecosystem","5.10.221-1","excluding",{"version":59,"is_range":54,"range_type":55,"version_start":9,"version_start_type":9,"version_end":60,"version_end_type":57,"fixed_in":9},"lt6_1_99_1","6.1.99-1",{"version":62,"is_range":54,"range_type":55,"version_start":9,"version_start_type":9,"version_end":63,"version_end_type":57,"fixed_in":9},"lt6_9_7_1","6.9.7-1",{"version":62,"is_range":54,"range_type":55,"version_start":9,"version_start_type":9,"version_end":63,"version_end_type":57,"fixed_in":9},{"ecosystem":47,"name":66,"vendor":49,"product":66,"cpe_part":9,"purl_type":50,"purl_namespace":49,"purl_name":66,"source":9,"versions":67},"linux-6.1",[68],{"version":69,"is_range":54,"range_type":55,"version_start":9,"version_start_type":9,"version_end":70,"version_end_type":57,"fixed_in":9},"lt6_1_119_1~deb11u1","6.1.119-1~deb11u1"]