In the Linux kernel, the following vulnerability has been resolved:
net/mlx5: Fix tainted pointer delete is case of flow rules creation fail
In case of flow rule creation fail in mlx5_lag_create_port_sel_table(),
instead of previously created rules, the tainted pointer is deleted
deveral times.
Fix this bug by using correct flow rules pointers.
Found by Linux Verification Center (linuxtesting.org) with SVACE.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 24.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 24.04 | noarch | linux-aws | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux-aws-6.5 | < any | UNKNOWN |
ubuntu | 24.04 | noarch | linux-azure | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux-azure-6.5 | < any | UNKNOWN |
ubuntu | 24.04 | noarch | linux-gcp | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux-gcp-6.5 | < any | UNKNOWN |
ubuntu | 24.04 | noarch | linux-gke | < any | UNKNOWN |
ubuntu | 24.04 | noarch | linux-ibm | < any | UNKNOWN |
ubuntu | 24.04 | noarch | linux-intel | < any | UNKNOWN |
git.kernel.org/linus/229bedbf62b13af5aba6525ad10b62ad38d9ccb5 (6.10-rc3)
git.kernel.org/stable/c/229bedbf62b13af5aba6525ad10b62ad38d9ccb5
git.kernel.org/stable/c/531eab2da27dd42d68dfb841d82e987f4a6738b8
git.kernel.org/stable/c/a03a3fa12769e25f4385bee587afe1445aee7f7a
git.kernel.org/stable/c/d857df86837ac1c30592e8a068204d16feac9930
launchpad.net/bugs/cve/CVE-2024-40940
nvd.nist.gov/vuln/detail/CVE-2024-40940
security-tracker.debian.org/tracker/CVE-2024-40940
www.cve.org/CVERecord?id=CVE-2024-40940