Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: Revert "xsk: Support redirect to any socket bound to the same umem" This reverts commit 2863d665ea41282379f108e4da6c8a2366ba66db. This patch introduced a potential kernel crash when multiple napi instances redirect to the same AF_XDP socket. By removing the queue_index check, it is possible for multiple napi instances to access the Rx ring at the same time, which will result in a corrupted ring state which can lead to a crash when flushing the rings in __xsk_flush(). This can happen when the linked list of sockets to flush gets corrupted by concurrent accesses. A quick and small fix is not possible, so let us revert this for now.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 6.9, < 6.9.5 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/stable/c/19cb40b1064566ea09538289bfcf5bc7ecb9b6f5Patch
- https://git.kernel.org/stable/c/7fcf26b315bbb728036da0862de6b335da83dff2Patch
- https://git.kernel.org/stable/c/19cb40b1064566ea09538289bfcf5bc7ecb9b6f5Patch
- https://git.kernel.org/stable/c/7fcf26b315bbb728036da0862de6b335da83dff2Patch
FAQ
What is CVE-2024-39293?
CVE-2024-39293 is a vulnerability with a CVSS score of 4.7 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: Revert "xsk: Support redirect to any socket bound to the same umem" This reverts commit 2863d665ea41282379f108e4da6c8a2366ba66db. ...
How severe is CVE-2024-39293?
CVE-2024-39293 has been rated MEDIUM with a CVSS base score of 4.7/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-39293?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.