CVE-2024-57933
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
gve: guard XSK operations on the existence of queues
This patch predicates the enabling and disabling of XSK pools on the existence of queues. As it stands, if the interface is down, disabling or enabling XSK pools would result in a crash, as the RX queue pointer would be NULL. XSK pool registration will occur as part of the next interface up.
Similarly, xsk_wakeup needs be guarded against queues disappearing while the function is executing, so a check against the GVE_PRIV_FLAGS_NAPI_ENABLED flag is added to synchronize with the disabling of the bit and the synchronize_net() in gve_turndown.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | fd8e40321a12391e6f554cc637d0c4b6109682a9 < 771d66f2bd8c4dba1286a9163ab982cecd825718 | affected |
| Linux | Linux | fd8e40321a12391e6f554cc637d0c4b6109682a9 < 8e8d7037c89437af12725f454e2eaf40e8166c0f | affected |
| Linux | Linux | fd8e40321a12391e6f554cc637d0c4b6109682a9 < 40338d7987d810fcaa95c500b1068a52b08eec9b | affected |
| Linux | Linux | 6.4 | affected |
| Linux | Linux | 0 < 6.4 | unaffected |
| Linux | Linux | 6.6.70 <= 6.6.* | unaffected |
| Linux | Linux | 6.12.9 <= 6.12.* | unaffected |
| Linux | Linux | 6.13 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://git.kernel.org/stable/c/771d66f2bd8c4dba1286a9163ab982cecd825718
- https://git.kernel.org/stable/c/8e8d7037c89437af12725f454e2eaf40e8166c0f
- https://git.kernel.org/stable/c/40338d7987d810fcaa95c500b1068a52b08eec9b
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.