cve/2024/CVE-2024-54683.md

### [CVE-2024-54683](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-54683)
![](https://img.shields.io/static/v1?label=Product&message=Linux&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=0902b469bd25065aa0688c3cee6f11744c817e7c%3C%208c2c8445cda8f59c38dec7dc10509bcb23ae26a0%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

In the Linux kernel, the following vulnerability has been resolved:netfilter: IDLETIMER: Fix for possible ABBA deadlockDeletion of the last rule referencing a given idletimer may happen atthe same time as a read of its file in sysfs:| ======================================================| WARNING: possible circular locking dependency detected| 6.12.0-rc7-01692-g5e9a28f41134-dirty #594 Not tainted| ------------------------------------------------------| iptables/3303 is trying to acquire lock:| ffff8881057e04b8 (kn->active#48){++++}-{0:0}, at: __kernfs_remove+0x20|| but task is already holding lock:| ffffffffa0249068 (list_mutex){+.+.}-{3:3}, at: idletimer_tg_destroy_v]|| which lock already depends on the new lock.A simple reproducer is:| #!/bin/bash|| while true; do|         iptables -A INPUT -i foo -j IDLETIMER --timeout 10 --label "testme"|         iptables -D INPUT -i foo -j IDLETIMER --timeout 10 --label "testme"| done &| while true; do|         cat /sys/class/xt_idletimer/timers/testme >/dev/null| doneAvoid this by freeing list_mutex right after deleting the element fromthe list, then continuing with the teardown.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/oogasawa/Utility-security