CVE-2024-35834

Summary

In the Linux kernel, the following vulnerability has been resolved:

xsk: recycle buffer in case Rx queue was full

Add missing xsk_buff_free() call when __xsk_rcv_zc() failed to produce descriptor to XSK Rx queue.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux24ea50127ecf0efe819c1f6230add27abc6ca9d9 < cce713664548284daf977739e7ff1cd59e84189caffected
LinuxLinux24ea50127ecf0efe819c1f6230add27abc6ca9d9 < 7b4d93d31aade99210d41cd9d4cbd2957c98bc8caffected
LinuxLinux24ea50127ecf0efe819c1f6230add27abc6ca9d9 < 269009893146c495f41e9572dd9319e787c2eba9affected
LinuxLinux6.6affected
LinuxLinux0 < 6.6unaffected
LinuxLinux6.6.15 <= 6.6.*unaffected
LinuxLinux6.7.3 <= 6.7.*unaffected
LinuxLinux6.8 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References