Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatcveRedhat.comRH:CVE-2024-38597
HistoryJun 20, 2024 - 2:55 p.m.

CVE-2024-38597

2024-06-2014:55:59
redhat.com
access.redhat.com
11
linux kernel
cve-2024-38597
vulnerability
sungem
netpoll
deadlocks.

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

6.9

Confidence

Low

EPSS

0

Percentile

5.0%

JSON

In the Linux kernel, the following vulnerability has been resolved: eth: sungem: remove .ndo_poll_controller to avoid deadlocks Erhard reports netpoll warnings from sungem: netpoll_send_skb_on_dev(): eth0 enabled interrupts in poll (gem_start_xmit+0x0/0x398) WARNING: CPU: 1 PID: 1 at net/core/netpoll.c:370 netpoll_send_skb+0x1fc/0x20c gem_poll_controller() disables interrupts, which may sleep. We can’t sleep in netpoll, it has interrupts disabled completely. Strangely, gem_poll_controller() doesn’t even poll the completions, and instead acts as if an interrupt has fired so it just schedules NAPI and exits. None of this has been necessary for years, since netpoll invokes NAPI directly.

Related

cve 1
debiancve 1
cvelist 1
osv 20
vulnrichment 1
nvd 1
ubuntucve 1
nessus 21
openvas 17
ubuntu 4
mageia 2
cve
cve
CVE-2024-38597
2024-06-19 14:15:19
debiancve
debiancve
CVE-2024-38597
2024-06-19 14:15:19
cvelist
cvelist
CVE-2024-38597 eth: sungem: remove .ndo_poll_controller to avoid deadlocks
2024-06-19 13:45:46
osv
osv
UBUNTU-CVE-2024-38597
2024-06-19 14:15:00
CVE-2024-38597
2024-06-19 14:15:19
linux - security update
2024-07-15 00:00:00
vulnrichment
vulnrichment
CVE-2024-38597 eth: sungem: remove .ndo_poll_controller to avoid deadlocks
2024-06-19 13:45:46
nvd
nvd
CVE-2024-38597
2024-06-19 14:15:19
ubuntucve
ubuntucve
CVE-2024-38597
2024-06-19 00:00:00
nessus
nessus
Debian dsa-5730 : affs-modules-5.10.0-29-4kc-malta-di - security update
2024-07-16 00:00:00
SUSE SLES12 Security Update : kernel (SUSE-SU-2024:2381-1)
2024-07-11 00:00:00
SUSE SLES12 Security Update : kernel (SUSE-SU-2024:2360-1)
2024-07-10 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-5730-1)
2024-07-16 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:2360-1)
2024-07-10 00:00:00
Ubuntu: Security Advisory (USN-7007-3)
2024-09-24 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2024-08-08 00:00:00
Linux kernel vulnerabilities
2024-08-09 00:00:00
Linux kernel (OEM) vulnerabilities
2024-08-12 00:00:00
mageia
mageia
Updated kernel-linus packages fix security vulnerabilities
2024-07-14 08:23:38
Updated kernel kmod-xtables-addons kmod-virtualbox dwarves packages fix security vulnerabilities
2024-07-13 10:54:44

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

6.9

Confidence

Low

EPSS

0

Percentile

5.0%

JSON
Related for RH:CVE-2024-38597
cve1debiancve1cvelist1osv20vulnrichment1nvd1ubuntucve1nessus21openvas17ubuntu4mageia2