CVE-2024-49973
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
r8169: add tally counter fields added with RTL8125
RTL8125 added fields to the tally counter, what may result in the chip dma'ing these new fields to unallocated memory. Therefore make sure that the allocated memory area is big enough to hold all of the tally counter values, even if we use only parts of it.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | f1bce4ad2f1cee6759711904b9fffe4a3dd8af87 < 64648ae8c97ec5a3165021627f5a1658ebe081ca | affected |
| Linux | Linux | f1bce4ad2f1cee6759711904b9fffe4a3dd8af87 < 991e8b0bab669b7d06927c3e442b3352532e8581 | affected |
| Linux | Linux | f1bce4ad2f1cee6759711904b9fffe4a3dd8af87 < 21950321ad33d7613b1453f4c503d7b1871deb61 | affected |
| Linux | Linux | f1bce4ad2f1cee6759711904b9fffe4a3dd8af87 < fe44b3bfbf0c74df5712f44458689d0eccccf47d | affected |
| Linux | Linux | f1bce4ad2f1cee6759711904b9fffe4a3dd8af87 < 1c723d785adb711496bc64c24240f952f4faaabf | affected |
| Linux | Linux | f1bce4ad2f1cee6759711904b9fffe4a3dd8af87 < 92bc8647b4d65f4d4bf8afdb206321c1bc55a486 | affected |
| Linux | Linux | f1bce4ad2f1cee6759711904b9fffe4a3dd8af87 < 585c048d15ed559f20cb94c8fa2f30077efa4fbc | affected |
| Linux | Linux | f1bce4ad2f1cee6759711904b9fffe4a3dd8af87 < ced8e8b8f40accfcce4a2bbd8b150aa76d5eff9a | affected |
| Linux | Linux | 5.4 | affected |
| Linux | Linux | 0 < 5.4 | unaffected |
| Linux | Linux | 5.4.285 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.227 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.168 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.113 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.55 <= 6.6.* | unaffected |
| Linux | Linux | 6.10.14 <= 6.10.* | unaffected |
| Linux | Linux | 6.11.3 <= 6.11.* | unaffected |
| Linux | Linux | 6.12 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
CVE Program Container
Additional References
- https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html
- https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
Additional References
- https://cert-portal.siemens.com/productcert/html/ssa-265688.html
- https://cert-portal.siemens.com/productcert/html/ssa-355557.html
References
- https://git.kernel.org/stable/c/64648ae8c97ec5a3165021627f5a1658ebe081ca
- https://git.kernel.org/stable/c/991e8b0bab669b7d06927c3e442b3352532e8581
- https://git.kernel.org/stable/c/21950321ad33d7613b1453f4c503d7b1871deb61
- https://git.kernel.org/stable/c/fe44b3bfbf0c74df5712f44458689d0eccccf47d
- https://git.kernel.org/stable/c/1c723d785adb711496bc64c24240f952f4faaabf
- https://git.kernel.org/stable/c/92bc8647b4d65f4d4bf8afdb206321c1bc55a486
- https://git.kernel.org/stable/c/585c048d15ed559f20cb94c8fa2f30077efa4fbc
- https://git.kernel.org/stable/c/ced8e8b8f40accfcce4a2bbd8b150aa76d5eff9a
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.