CVE-2024-44940

Summary

In the Linux kernel, the following vulnerability has been resolved:

fou: remove warn in gue_gro_receive on unsupported protocol

Drop the WARN_ON_ONCE inn gue_gro_receive if the encapsulated type is not known or does not have a GRO handler.

Such a packet is easily constructed. Syzbot generates them and sets off this warning.

Remove the warning as it is expected and not actionable.

The warning was previously reduced from WARN_ON to WARN_ON_ONCE in commit 270136613bf7 ("fou: Do WARN_ON_ONCE in gue_gro_receive for bad proto callbacks").

Affected Software

VendorProductVersion RangeStatus
LinuxLinux37dd0247797b168ad1cc7f5dbec825a1ee66535b < a925a200299a6dfc7c172f54da6f374edc930053affected
LinuxLinux37dd0247797b168ad1cc7f5dbec825a1ee66535b < b1453a5616c7bd8acd90633ceba4e59105ba3b51affected
LinuxLinux37dd0247797b168ad1cc7f5dbec825a1ee66535b < 5a2e37bc648a2503bf6d687aed27b9f4455d82ebaffected
LinuxLinux37dd0247797b168ad1cc7f5dbec825a1ee66535b < 3db4395332e7050ef9ddeb3052e6b5019f2a2a59affected
LinuxLinux37dd0247797b168ad1cc7f5dbec825a1ee66535b < 440ab7f97261bc28501636a13998e1b1946d2e79affected
LinuxLinux37dd0247797b168ad1cc7f5dbec825a1ee66535b < dd89a81d850fa9a65f67b4527c0e420d15bf836caffected
LinuxLinux3.18affected
LinuxLinux0 < 3.18unaffected
LinuxLinux5.10.234 <= 5.10.*unaffected
LinuxLinux5.15.174 <= 5.15.*unaffected
LinuxLinux6.1.107 <= 6.1.*unaffected
LinuxLinux6.6.47 <= 6.6.*unaffected
LinuxLinux6.10.6 <= 6.10.*unaffected
LinuxLinux6.11 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References