CVE-2024-11614

Summary

An out-of-bounds read vulnerability was found in DPDK's Vhost library checksum offload feature. This issue enables an untrusted or compromised guest to crash the hypervisor's vSwitch by forging Virtio descriptors to cause out-of-bounds reads. This flaw allows an attacker with a malicious VM using a virtio driver to cause the vhost-user side to crash by sending a packet with a Tx checksum offload request and an invalid csum_start offset.

Affected Software

VendorProductVersion RangeStatus
21.05 < 21.11-4affected
Red HatFast Datapath for Red Hat Enterprise Linux 80:3.1.0-159.el8fdp < *unaffected
Red HatFast Datapath for Red Hat Enterprise Linux 90:3.1.0-149.el9fdp < *unaffected
Red HatFast Datapath for Red Hat Enterprise Linux 90:3.3.0-92.el9fdp < *unaffected
Red HatFast Datapath for Red Hat Enterprise Linux 90:3.4.0-48.el9fdp < *unaffected
Red HatRed Hat Enterprise Linux 80:23.11-2.el8_10 < *unaffected
Red HatRed Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support0:21.11-3.el8_6 < *unaffected
Red HatRed Hat Enterprise Linux 8.6 Telecommunications Update Service0:21.11-3.el8_6 < *unaffected
Red HatRed Hat Enterprise Linux 8.6 Update Services for SAP Solutions0:21.11-3.el8_6 < *unaffected
Red HatRed Hat Enterprise Linux 8.8 Extended Update Support0:21.11-4.el8_8 < *unaffected
Red HatRed Hat Enterprise Linux 92:23.11-2.el9_5 < *unaffected
Red HatRed Hat Enterprise Linux 9.0 Update Services for SAP Solutions2:21.11-3.el9_0 < *unaffected
Red HatRed Hat Enterprise Linux 9.2 Extended Update Support2:22.11-4.el9_2 < *unaffected
Red HatRed Hat Enterprise Linux 9.4 Extended Update Support2:23.11-2.el9_4 < *unaffected

Weaknesses

  • CWE-125: Out-of-bounds Read

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References