CVE-2024-27024

Summary

In the Linux kernel, the following vulnerability has been resolved:

net/rds: fix WARNING in rds_conn_connect_if_down

If connection isn't established yet, get_mr() will fail, trigger connection after get_mr().

Affected Software

VendorProductVersion RangeStatus
LinuxLinux584a8279a44a800dea5a5c1e9d53a002e03016b4 < 786854141057751bc08eb26f1b02e97c1631c8f4affected
LinuxLinux584a8279a44a800dea5a5c1e9d53a002e03016b4 < 997efea2bf3a4adb96c306b9ad6a91442237bf5baffected
LinuxLinux584a8279a44a800dea5a5c1e9d53a002e03016b4 < 9dfc15a10dfd44f8ff7f27488651cb5be6af83c2affected
LinuxLinux584a8279a44a800dea5a5c1e9d53a002e03016b4 < b562ebe21ed9adcf42242797dd6cb75beef12bf0affected
LinuxLinux584a8279a44a800dea5a5c1e9d53a002e03016b4 < 998fd719e6d6468b930ac0c44552ea9ff8b07b80affected
LinuxLinux584a8279a44a800dea5a5c1e9d53a002e03016b4 < 2b505d05280739ce31d5708da840f42df827cb85affected
LinuxLinux584a8279a44a800dea5a5c1e9d53a002e03016b4 < 907761307469adecb02461a14120e9a1812a5fb1affected
LinuxLinux584a8279a44a800dea5a5c1e9d53a002e03016b4 < c055fc00c07be1f0df7375ab0036cebd1106ed38affected
LinuxLinux952835ccd917682ebb705f89ff1e56fbf068a1d8affected
LinuxLinux783941bd9f445a37c2854ec0b4cb9f9e603193a7affected
LinuxLinux57d2ce1603101ce3f30d0ccdc35b98af08d2ed88affected
LinuxLinux5ba1957f889f575f2a240eafe543c3fda5aa72e0affected
LinuxLinux3.18.85 < 3.19affected
LinuxLinux4.1.48 < 4.2affected
LinuxLinux4.4.103 < 4.5affected
LinuxLinux4.9.66 < 4.10affected
LinuxLinux4.11affected
LinuxLinux0 < 4.11unaffected
LinuxLinux4.19.310 <= 4.19.*unaffected
LinuxLinux5.4.272 <= 5.4.*unaffected
LinuxLinux5.10.213 <= 5.10.*unaffected
LinuxLinux5.15.152 <= 5.15.*unaffected
LinuxLinux6.1.82 <= 6.1.*unaffected
LinuxLinux6.6.22 <= 6.6.*unaffected
LinuxLinux6.7.10 <= 6.7.*unaffected
LinuxLinux6.8 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

Additional References

References