CVE-2024-53240

Summary

In the Linux kernel, the following vulnerability has been resolved:

xen/netfront: fix crash when removing device

When removing a netfront device directly after a suspend/resume cycle it might happen that the queues have not been setup again, causing a crash during the attempt to stop the queues another time.

Fix that by checking the queues are existing before trying to stop them.

This is XSA-465 / CVE-2024-53240.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxed773dd798bf720756d20021b8d8a4a3d7184bda < 20f7f0cf7af5d81b218202ef504223af84b16a8faffected
LinuxLinuxe6860c889f4ad50b6ab696f5ea154295d72cf27a < 1d5354a9182b6d302ae10367cbec1ca339d4e4e7affected
LinuxLinuxe6e897d4fe2f89c0bd94600a40bedf5e6e75e050 < 2657ba851fa3381256d81e431b20041dc232fd88affected
LinuxLinuxd50b7914fae04d840ce36491d22133070b18cca9 < 8b41e6bccf7de93982781be4125211443382e66daffected
LinuxLinuxd50b7914fae04d840ce36491d22133070b18cca9 < fe9a8f5250aed0948b668c8a4e051e3b0fc29f09affected
LinuxLinuxd50b7914fae04d840ce36491d22133070b18cca9 < 7728e974ffbf14f17648dd92ea640b42b654d47caffected
LinuxLinuxd50b7914fae04d840ce36491d22133070b18cca9 < f9244fb55f37356f75c739c57323d9422d7aa0f8affected
LinuxLinux99859947517e446058ad7243ee81d2f9801fa3ddaffected
LinuxLinuxf2dd60fd3fe98bd36a91b0c6e10bfe9d66258f84affected
LinuxLinux5.4.227 < 5.4.288affected
LinuxLinux5.10.159 < 5.10.232affected
LinuxLinux5.15.83 < 5.15.175affected
LinuxLinux4.19.269 < 4.20affected
LinuxLinux6.0.13 < 6.1affected
LinuxLinux6.1affected
LinuxLinux0 < 6.1unaffected
LinuxLinux5.4.288 <= 5.4.*unaffected
LinuxLinux5.10.232 <= 5.10.*unaffected
LinuxLinux5.15.175 <= 5.15.*unaffected
LinuxLinux6.1.121 <= 6.1.*unaffected
LinuxLinux6.6.67 <= 6.6.*unaffected
LinuxLinux6.12.6 <= 6.12.*unaffected
LinuxLinux6.13 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References