CVE-2024-35958

2024-05-2000:00:00

ubuntu.com

linux

kernel

vulnerability

net

ena

descriptor

free behavior

6.6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.4%

JSON

In the Linux kernel, the following vulnerability has been resolved: net:
ena: Fix incorrect descriptor free behavior ENA has two types of TX queues:

queues which only process TX packets arriving from the network stack -
queues which only process TX packets forwarded to it by XDP_REDIRECT or
XDP_TX instructions The ena_free_tx_bufs() cycles through all descriptors
in a TX queue and unmaps + frees every descriptor that hasn’t been
acknowledged yet by the device (uncompleted TX transactions). The function
assumes that the processed TX queue is necessarily from the first category
listed above and ends up using napi_consume_skb() for descriptors belonging
to an XDP specific queue. This patch solves a bug in which, in case of a VF
reset, the descriptors aren’t freed correctly, leading to crashes.

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchlinux< anyUNKNOWN
ubuntu20.04noarchlinux< anyUNKNOWN
ubuntu22.04noarchlinux< anyUNKNOWN
ubuntu23.10noarchlinux< anyUNKNOWN
ubuntu24.04noarchlinux< anyUNKNOWN
ubuntu14.04noarchlinux< anyUNKNOWN
ubuntu16.04noarchlinux< anyUNKNOWN
ubuntu18.04noarchlinux-aws< anyUNKNOWN
ubuntu20.04noarchlinux-aws< anyUNKNOWN
ubuntu22.04noarchlinux-aws< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	18.04	noarch	linux	< any	UNKNOWN
ubuntu	20.04	noarch	linux	< any	UNKNOWN
ubuntu	22.04	noarch	linux	< any	UNKNOWN
ubuntu	23.10	noarch	linux	< any	UNKNOWN
ubuntu	24.04	noarch	linux	< any	UNKNOWN
ubuntu	14.04	noarch	linux	< any	UNKNOWN
ubuntu	16.04	noarch	linux	< any	UNKNOWN
ubuntu	18.04	noarch	linux-aws	< any	UNKNOWN
ubuntu	20.04	noarch	linux-aws	< any	UNKNOWN
ubuntu	22.04	noarch	linux-aws	< any	UNKNOWN