CVE-2024-42113

Summary

In the Linux kernel, the following vulnerability has been resolved:

net: txgbe: initialize num_q_vectors for MSI/INTx interrupts

When using MSI/INTx interrupts, wx->num_q_vectors is uninitialized. Thus there will be kernel panic in wx_alloc_q_vectors() to allocate queue vectors.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux3f703186113fac0f3c965204b2cbb22a03322e2c < 9edc7a83cd40ac96ff14fe3a17a38f7ace6611dfaffected
LinuxLinux3f703186113fac0f3c965204b2cbb22a03322e2c < c98969226d1fe0c1dd779db8b1c444bc5294fc83affected
LinuxLinux3f703186113fac0f3c965204b2cbb22a03322e2c < 7c36711a2cd8059c2d24f5e5c1d76e8ea2d5613caffected
LinuxLinux6.3affected
LinuxLinux0 < 6.3unaffected
LinuxLinux6.6.39 <= 6.6.*unaffected
LinuxLinux6.9.9 <= 6.9.*unaffected
LinuxLinux6.10 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References