CVE-2024-39293

2024-06-2515:15:13

Debian Security Bug Tracker

security-tracker.debian.org

cve-2024-39293

xsk support

redirect

socket bound

umem

unix

6.4 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

In the Linux kernel, the following vulnerability has been resolved: Revert “xsk: Support redirect to any socket bound to the same umem” This reverts commit 2863d665ea41282379f108e4da6c8a2366ba66db. This patch introduced a potential kernel crash when multiple napi instances redirect to the same AF_XDP socket. By removing the queue_index check, it is possible for multiple napi instances to access the Rx ring at the same time, which will result in a corrupted ring state which can lead to a crash when flushing the rings in __xsk_flush(). This can happen when the linked list of sockets to flush gets corrupted by concurrent accesses. A quick and small fix is not possible, so let us revert this for now.

OSVersionArchitecturePackageVersionFilename
Debian12alllinux<= 6.1.76-1linux_6.1.76-1_all.deb
Debian11alllinux<= 5.10.209-2linux_5.10.209-2_all.deb
Debian10alllinux<= 4.19.249-2linux_4.19.249-2_all.deb
Debian999alllinux< 6.9.7-1linux_6.9.7-1_all.deb
Debian13alllinux<= 6.8.12-1linux_6.8.12-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	linux	<= 6.1.76-1	linux_6.1.76-1_all.deb
Debian	11	all	linux	<= 5.10.209-2	linux_5.10.209-2_all.deb
Debian	10	all	linux	<= 4.19.249-2	linux_4.19.249-2_all.deb
Debian	999	all	linux	< 6.9.7-1	linux_6.9.7-1_all.deb
Debian	13	all	linux	<= 6.8.12-1	linux_6.8.12-1_all.deb