Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
vulnrichmentLinuxVULNRICHMENT:CVE-2024-38597
HistoryJun 19, 2024 - 1:45 p.m.

CVE-2024-38597 eth: sungem: remove .ndo_poll_controller to avoid deadlocks

2024-06-1913:45:46
Linux
github.com
2
linux kernel
vulnerability
eth sungem
.ndo_poll_controller
deadlock
netpoll
gem_poll_controller
napi
interrupts

AI Score

6.7

Confidence

Low

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial

JSON

In the Linux kernel, the following vulnerability has been resolved:

eth: sungem: remove .ndo_poll_controller to avoid deadlocks

Erhard reports netpoll warnings from sungem:

netpoll_send_skb_on_dev(): eth0 enabled interrupts in poll (gem_start_xmit+0x0/0x398)
WARNING: CPU: 1 PID: 1 at net/core/netpoll.c:370 netpoll_send_skb+0x1fc/0x20c

gem_poll_controller() disables interrupts, which may sleep.
We can’t sleep in netpoll, it has interrupts disabled completely.
Strangely, gem_poll_controller() doesn’t even poll the completions,
and instead acts as if an interrupt has fired so it just schedules
NAPI and exits. None of this has been necessary for years, since
netpoll invokes NAPI directly.

Related

cve 1
debiancve 1
cvelist 1
osv 20
nvd 1
redhatcve 1
ubuntucve 1
nessus 21
openvas 17
ubuntu 4
mageia 2
cve
cve
CVE-2024-38597
2024-06-19 14:15:19
debiancve
debiancve
CVE-2024-38597
2024-06-19 14:15:19
cvelist
cvelist
CVE-2024-38597 eth: sungem: remove .ndo_poll_controller to avoid deadlocks
2024-06-19 13:45:46
osv
osv
UBUNTU-CVE-2024-38597
2024-06-19 14:15:00
CVE-2024-38597
2024-06-19 14:15:19
linux - security update
2024-07-15 00:00:00
nvd
nvd
CVE-2024-38597
2024-06-19 14:15:19
redhatcve
redhatcve
CVE-2024-38597
2024-06-20 14:55:59
ubuntucve
ubuntucve
CVE-2024-38597
2024-06-19 00:00:00
nessus
nessus
Debian dsa-5730 : affs-modules-5.10.0-29-4kc-malta-di - security update
2024-07-16 00:00:00
SUSE SLES12 Security Update : kernel (SUSE-SU-2024:2381-1)
2024-07-11 00:00:00
SUSE SLES12 Security Update : kernel (SUSE-SU-2024:2360-1)
2024-07-10 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-5730-1)
2024-07-16 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:2360-1)
2024-07-10 00:00:00
Ubuntu: Security Advisory (USN-7007-1)
2024-09-16 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2024-08-13 00:00:00
Linux kernel vulnerabilities
2024-08-09 00:00:00
Linux kernel (OEM) vulnerabilities
2024-08-12 00:00:00
mageia
mageia
Updated kernel-linus packages fix security vulnerabilities
2024-07-14 08:23:38
Updated kernel kmod-xtables-addons kmod-virtualbox dwarves packages fix security vulnerabilities
2024-07-13 10:54:44

AI Score

6.7

Confidence

Low

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial

JSON
Related for VULNRICHMENT:CVE-2024-38597
cve1debiancve1cvelist1osv20nvd1redhatcve1ubuntucve1nessus21openvas17ubuntu4mageia2