Lucene search
LinuxVULNRICHMENT:CVE-2024-40990HistoryJul 12, 2024 - 12:37 p.m.
CVE-2024-40990 RDMA/mlx5: Add check for srq max_sge attribute
2024-07-1212:37:34
Linux
github.com
2
linux kernel
vulnerability
rdma/mlx5
max_sge attribute
In the Linux kernel, the following vulnerability has been resolved:
RDMA/mlx5: Add check for srq max_sge attribute
max_sge attribute is passed by the user, and is inserted and used
unchecked, so verify that the value doesn’t exceed maximum allowed value
before using it.
References
git.kernel.org/stable/c/1e692244bf7dd827dd72edc6c4a3b36ae572f03c
git.kernel.org/stable/c/36ab7ada64caf08f10ee5a114d39964d1f91e81d
git.kernel.org/stable/c/4ab99e3613139f026d2d8ba954819e2876120ab3
git.kernel.org/stable/c/7186b81c1f15e39069b1af172c6a951728ed3511
git.kernel.org/stable/c/999586418600b4b3b93c2a0edd3a4ca71ee759bf
git.kernel.org/stable/c/e0deb0e9c967b61420235f7f17a4450b4b4d6ce2
Related
ubuntucve
ubuntucve
CVE-2024-40990
2024-07-12 00:00:00
redhatcve
redhatcve
CVE-2024-40990
2024-07-16 18:55:59
cve
cve
CVE-2024-40990
2024-07-12 13:15:20
osv
osv
CVE-2024-40990
2024-07-12 13:15:20
linux - security update
2024-07-16 00:00:00
linux - security update
2024-07-15 00:00:00
cvelist
cvelist
CVE-2024-40990 RDMA/mlx5: Add check for srq max_sge attribute
2024-07-12 12:37:34
nvd
nvd
CVE-2024-40990
2024-07-12 13:15:20
debiancve
debiancve
CVE-2024-40990
2024-07-12 13:15:20
openvas
openvas
Debian: Security Advisory (DSA-5731-1)
2024-07-17 00:00:00
Debian: Security Advisory (DSA-5730-1)
2024-07-16 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:2901-1)
2024-08-15 00:00:00
nessus
nessus
Debian dsa-5731 : affs-modules-6.1.0-21-4kc-malta-di - security update
2024-07-16 00:00:00
Debian dsa-5730 : affs-modules-5.10.0-29-4kc-malta-di - security update
2024-07-16 00:00:00
SUSE SLES12 Security Update : kernel (SUSE-SU-2024:2892-1)
2024-08-14 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2024-09-12 00:00:00
AI Score
6.8
Confidence
Low
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2024-40990