Description
In the Linux kernel, the following vulnerability has been resolved: mmc: core: Avoid bitfield RMW for claim/retune flags Move claimed and retune control flags out of the bitfield word to avoid unrelated RMW side effects in asynchronous contexts. The host->claimed bit shared a word with retune flags. Writes to claimed in __mmc_claim_host() or retune_now in mmc_mq_queue_rq() can overwrite other bits when concurrent updates happen in other contexts, triggering spurious WARN_ON(!host->claimed). Convert claimed, can_retune, retune_now and retune_paused to bool to remove shared-word coupling.
Product status
6c0cedd1ef9527ef13e66875746570e76a3188a7 (git) before 41dce4dae583a8ce06a7ebf4ce704c46a142957c
6c0cedd1ef9527ef13e66875746570e76a3188a7 (git) before bb7fc2498c3bb25fa6a91f22f4760005325cfbd5
6c0cedd1ef9527ef13e66875746570e76a3188a7 (git) before 270277c2ab631044867adb1bd2f2433d3892de6e
6c0cedd1ef9527ef13e66875746570e76a3188a7 (git) before 45038e03f15e992c48603fff8c6b1c9be5397ac9
6c0cedd1ef9527ef13e66875746570e76a3188a7 (git) before 0e06cc511c61cff1591e5435a207759adcc76b6d
6c0cedd1ef9527ef13e66875746570e76a3188a7 (git) before d3a3caf44c8ec26f5d63dc17c1c7242effa60ebc
6c0cedd1ef9527ef13e66875746570e76a3188a7 (git) before 901084c51a0a8fb42a3f37d2e9c62083c495f824
4.15
Any version before 4.15
5.15.203 (semver)
6.1.167 (semver)
6.6.130 (semver)
6.12.78 (semver)
6.18.19 (semver)
6.19.9 (semver)
7.0 (original_commit_for_fix)
References
git.kernel.org/...c/41dce4dae583a8ce06a7ebf4ce704c46a142957c
git.kernel.org/...c/bb7fc2498c3bb25fa6a91f22f4760005325cfbd5
git.kernel.org/...c/270277c2ab631044867adb1bd2f2433d3892de6e
git.kernel.org/...c/45038e03f15e992c48603fff8c6b1c9be5397ac9
git.kernel.org/...c/0e06cc511c61cff1591e5435a207759adcc76b6d
git.kernel.org/...c/d3a3caf44c8ec26f5d63dc17c1c7242effa60ebc
git.kernel.org/...c/901084c51a0a8fb42a3f37d2e9c62083c495f824