Release Date: | 2024-07-29 | |
Impact: | Low | What is this? |
In the Linux kernel, the following vulnerability has been resolved:\ni40e: Fix XDP program unloading while removing the driver\nThe commit 6533e558c650 ('i40e: Fix reset path while removing\nthe driver') introduced a new PF state '__I40E_IN_REMOVE' to block\nmodifying the XDP program while the driver is being removed.\nUnfortunately, such a change is useful only if the '.ndo_bpf()'\ncallback was called out of the rmmod context because unloading the\nexisting XDP program is also a part of driver removing procedure.\nIn other words, from the rmmod context the driver is expected to\nunload the XDP program without reporting any errors. Otherwise,\nthe kernel warning with callstack is printed out to dmesg.\nExample failing scenario:\n1. Load the i40e driver.\n2. Load the XDP program.\n3. Unload the i40e driver (using 'rmmod' command).\nThe example kernel warning log:\n[ +0.004646] WARNING: CPU: 94 PID: 10395 at net/core/dev.c:9290 unregister_netdevice_many_notify+0x7a9/0x870\n[...]\n[ +0.010959] RIP: 0010:unregister_netdevice_many_notify+0x7a9/0x870\n[...]\n[ +0.002726] Call Trace:\n[ +0.002457]
See more information about CVE-2024-41047 from MITRE CVE dictionary and NIST NVD
NOTE: The following CVSS metrics and score provided are preliminary and subject to review.
Base Score: | 1.9 |
Vector String: | CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L |
Version: | 3.1 |
Attack Vector: | Local |
Attack Complexity: | High |
Privileges Required: | High |
User Interaction: | None |
Scope: | Unchanged |
Confidentiality Impact: | None |
Integrity Impact: | None |
Availability Impact: | Low |
Platform | Errata | Release Date |
Oracle Linux version 8 (kernel-uek) | ELSA-2024-12618 | 2024-09-12 |
Oracle Linux version 9 (kernel-uek) | ELSA-2024-12618 | 2024-09-12 |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections: