CVE-2024-36887

Summary

In the Linux kernel, the following vulnerability has been resolved:

e1000e: change usleep_range to udelay in PHY mdic access

This is a partial revert of commit 6dbdd4de0362 ("e1000e: Workaround for sporadic MDI error on Meteor Lake systems"). The referenced commit used usleep_range inside the PHY access routines, which are sometimes called from an atomic context. This can lead to a kernel panic in some scenarios, such as cable disconnection and reconnection on vPro systems.

Solve this by changing the usleep_range calls back to udelay.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux1d16cd91cd319d5bf6230c8493feb56a61e486a1 < f8a139656c95db893a543159873c57a470d7376daffected
LinuxLinux0a4e3c2d976aa4dd38951afd6267f74ef3fade0e < 950d5226cd6bb83ba720961a8d4d5cf79e6afd57affected
LinuxLinux6dbdd4de0362c37e54e8b049781402e5a409e7d0 < 387f295cb2150ed164905b648d76dfcbd3621778affected
LinuxLinux6.6.26 < 6.6.31affected
LinuxLinux6.8.5 < 6.8.10affected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References