CVE-2024-53164

Summary

In the Linux kernel, the following vulnerability has been resolved:

net: sched: fix ordering of qlen adjustment

Changes to sch->q.qlen around qdisc_tree_reduce_backlog() need to happen before a call to said function because otherwise it may fail to notify parent qdiscs when the child is about to become empty.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux959466588aa7f84ccf79ae36a1d89542eaf9aaec < 44782565e1e6174c94bddfa72ac7267cd09c1648affected
LinuxLinux959466588aa7f84ccf79ae36a1d89542eaf9aaec < 5e473f462a16f1a34e49ea4289a667d2e4f35b52affected
LinuxLinux959466588aa7f84ccf79ae36a1d89542eaf9aaec < 33db36b3c53d0fda2699ea39ba72bee4de8336e8affected
LinuxLinux959466588aa7f84ccf79ae36a1d89542eaf9aaec < 489422e2befff88a1de52b2acebe7b333bded025affected
LinuxLinux959466588aa7f84ccf79ae36a1d89542eaf9aaec < 97e13434b5da8e91bdf965352fad2141d13d72d3affected
LinuxLinux959466588aa7f84ccf79ae36a1d89542eaf9aaec < e3e54ad9eff8bdaa70f897e5342e34b76109497faffected
LinuxLinux959466588aa7f84ccf79ae36a1d89542eaf9aaec < 5eb7de8cd58e73851cd37ff8d0666517d9926948affected
LinuxLinux4.14affected
LinuxLinux0 < 4.14unaffected
LinuxLinux5.4.289 <= 5.4.*unaffected
LinuxLinux5.10.233 <= 5.10.*unaffected
LinuxLinux5.15.176 <= 5.15.*unaffected
LinuxLinux6.1.122 <= 6.1.*unaffected
LinuxLinux6.6.68 <= 6.6.*unaffected
LinuxLinux6.12.7 <= 6.12.*unaffected
LinuxLinux6.13 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References