CVE-2024-42139

Summary

In the Linux kernel, the following vulnerability has been resolved:

ice: Fix improper extts handling

Extts events are disabled and enabled by the application ts2phc. However, in case where the driver is removed when the application is running, a specific extts event remains enabled and can cause a kernel crash. As a side effect, when the driver is reloaded and application is started again, remaining extts event for the channel from a previous run will keep firing and the message "extts on unexpected channel" might be printed to the user.

To avoid that, extts events shall be disabled when PTP is released.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux172db5f91d5f7b91670c68a7547798b0b5374158 < 9f69b31ae9e25dec27ad31fbc64dd99af16ee3d3affected
LinuxLinux172db5f91d5f7b91670c68a7547798b0b5374158 < 00d3b4f54582d4e4a02cda5886bb336eeab268ccaffected
LinuxLinux5.14affected
LinuxLinux0 < 5.14unaffected
LinuxLinux6.9.9 <= 6.9.*unaffected
LinuxLinux6.10 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References