CVE-2024-26810

2024-04-0509:15:09

416baaa9-dc9f-4396-8d5f-8c081fb06d67

web.nvd.nist.gov

822

linux kernel

vfio/pci

vulnerability

fixed

configuration changes

interrupt code

synchronization

6.3 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

13.2%

JSON

In the Linux kernel, the following vulnerability has been resolved:

vfio/pci: Lock external INTx masking ops

Mask operations through config space changes to DisINTx may race INTx
configuration changes via ioctl. Create wrappers that add locking for
paths outside of the core interrupt code.

In particular, irq_type is updated holding igate, therefore testing
is_intx() requires holding igate. For example clearing DisINTx from
config space can otherwise race changes of the interrupt configuration.

This aligns interfaces which may trigger the INTx eventfd into two
camps, one side serialized by igate and the other only enabled while
INTx is configured. A subsequent patch introduces synchronization for
the latter flows.

Affected configurations

Vulners

Node

linuxlinux_kernelRange3.6–5.4.274

linuxlinux_kernelRange5.5.0–5.10.215

linuxlinux_kernelRange5.11.0–5.15.154

linuxlinux_kernelRange5.16.0–6.1.84

linuxlinux_kernelRange6.2.0–6.6.24

linuxlinux_kernelRange6.7.0–6.7.12

linuxlinux_kernelRange6.8.0–6.8.3

linuxlinux_kernelRange6.9.0≥

VendorProductVersionCPE
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
linux	linux_kernel	*	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	*	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	*	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	*	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	*	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	*	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	*	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	*	cpe:2.3:o:linux:linux_kernel::::::::

CNA Affected

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/vfio/pci/vfio_pci_intrs.c"
    ],
    "versions": [
      {
        "version": "89e1f7d4c66d",
        "lessThan": "1e71b6449d55",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "89e1f7d4c66d",
        "lessThan": "3dd9be6cb55e",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "89e1f7d4c66d",
        "lessThan": "ec73e0797292",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "89e1f7d4c66d",
        "lessThan": "3fe0ac10bd11",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "89e1f7d4c66d",
        "lessThan": "04a4a017b9ff",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "89e1f7d4c66d",
        "lessThan": "6fe478d855b2",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "89e1f7d4c66d",
        "lessThan": "03505e3344b0",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "89e1f7d4c66d",
        "lessThan": "810cd4bb5345",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/vfio/pci/vfio_pci_intrs.c"
    ],
    "versions": [
      {
        "version": "3.6",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "3.6",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.4.274",
        "lessThanOrEqual": "5.4.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.10.215",
        "lessThanOrEqual": "5.10.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.15.154",
        "lessThanOrEqual": "5.15.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.1.84",
        "lessThanOrEqual": "6.1.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.6.24",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.7.12",
        "lessThanOrEqual": "6.7.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.8.3",
        "lessThanOrEqual": "6.8.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.9",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]