Lucene search
LinuxVULNRICHMENT:CVE-2024-44970HistorySep 04, 2024 - 6:56 p.m.
CVE-2024-44970 net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink
2024-09-0418:56:46
Linux
github.com
2
linux kernel
net/mlx5e
shampo
vulnerability fix
wqe
linked list
unlink
strides
cqes
In the Linux kernel, the following vulnerability has been resolved:
net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink
When all the strides in a WQE have been consumed, the WQE is unlinked
from the WQ linked list (mlx5_wq_ll_pop()). For SHAMPO, it is possible
to receive CQEs with 0 consumed strides for the same WQE even after the
WQE is fully consumed and unlinked. This triggers an additional unlink
for the same wqe which corrupts the linked list.
Fix this scenario by accepting 0 sized consumed strides without
unlinking the WQE again.
Related
nvd
nvd
CVE-2024-44970
2024-09-04 19:15:31
osv
osv
CVE-2024-44970
2024-09-04 19:15:31
cvelist
cvelist
CVE-2024-44970 net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink
2024-09-04 18:56:46
cve
cve
CVE-2024-44970
2024-09-04 19:15:31
ubuntucve
ubuntucve
CVE-2024-44970
2024-09-05 00:00:00
debiancve
debiancve
CVE-2024-44970
2024-09-04 19:15:31
redhatcve
redhatcve
CVE-2024-44970
2024-09-04 20:20:24
AI Score
7.2
Confidence
Low
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2024-44970