CVE-2024-42112

Summary

In the Linux kernel, the following vulnerability has been resolved:

net: txgbe: free isb resources at the right time

When using MSI/INTx interrupt, the shared interrupts are still being handled in the device remove routine, before free IRQs. So isb memory is still read after it is freed. Thus move wx_free_isb_resources() from txgbe_close() to txgbe_remove(). And fix the improper isb free action in txgbe_open() error handling path.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxaefd013624a10f39b0bfaee8432a235128705380 < efdc3f54299835ddef23bea651c753c4d467010baffected
LinuxLinuxaefd013624a10f39b0bfaee8432a235128705380 < 935124dd5883b5de68dc5a94f582480a10643dc9affected
LinuxLinuxffe8a87463c8bb885c42ed54540d06ed041e76dcaffected
LinuxLinux6.8.12 < 6.9affected
LinuxLinux6.9affected
LinuxLinux0 < 6.9unaffected
LinuxLinux6.9.9 <= 6.9.*unaffected
LinuxLinux6.10 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References