CVE-2024-44970: net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink
First published: Wed Sep 04 2024(Updated: )
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink When all the strides in a WQE have been consumed, the WQE is unlinked from the WQ linked list (mlx5_wq_ll_pop()). For SHAMPO, it is possible to receive CQEs with 0 consumed strides for the same WQE even after the WQE is fully consumed and unlinked. This triggers an additional unlink for the same wqe which corrupts the linked list. Fix this scenario by accepting 0 sized consumed strides without unlinking the WQE again.
Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67 416baaa9-dc9f-4396-8d5f-8c081fb06d67
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linux Kernel | <6.1.105 | |
| Linux Kernel | >=6.2<6.6.46 | |
| Linux Kernel | >=6.7<6.10.5 | |
| debian/linux | <=5.10.223-1<=5.10.226-1 | 6.1.123-1 6.1.119-1 6.12.11-1 |
| debian/linux-6.1 | 6.1.119-1~deb11u1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://git.kernel.org/stable/c/50d8009a0ac02c3311b23a0066511f8337bd88d9
- https://git.kernel.org/stable/c/650e24748e1e0a7ff91d5c72b72a2f2a452b5b76
- https://git.kernel.org/stable/c/7b379353e9144e1f7460ff15f39862012c9d0d78
- https://git.kernel.org/stable/c/fba8334721e266f92079632598e46e5f89082f30
- https://lore.kernel.org/linux-cve-announce/2024090456-CVE-2024-44970-f687@gregkh/T
- https://access.redhat.com/errata/RHSA-2024:9315
- https://bugzilla.redhat.com/show_bug.cgi?id=2309801
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-44970
- https://nvd.nist.gov/vuln/detail/CVE-2024-44970
- https://launchpad.net/bugs/cve/CVE-2024-44970
- https://security-tracker.debian.org/tracker/CVE-2024-44970
- https://ubuntu.com/security/CVE-2024-44970
- https://git.kernel.org/linus/fba8334721e266f92079632598e46e5f89082f30
Frequently Asked Questions
What is the severity of CVE-2024-44970?
CVE-2024-44970 has a severity rating of high due to potential exploitation risks in the Linux kernel.
How do I fix CVE-2024-44970?
To fix CVE-2024-44970, update to the latest Linux kernel versions as outlined in the relevant security advisories.
Which versions of the Linux kernel are affected by CVE-2024-44970?
CVE-2024-44970 affects Linux kernel versions up to 6.1.105, between 6.2 and 6.6.46, and between 6.7 and 6.10.5.
Is there a workaround for CVE-2024-44970?
Currently, the best mitigation for CVE-2024-44970 is to apply the available security patches.
What component of the Linux kernel is impacted by CVE-2024-44970?
CVE-2024-44970 impacts the net/mlx5e component of the Linux kernel related to WQE management.
- agent/title
- agent/type
- agent/first-publish-date
- agent/remedy
- agent/severity
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2024-44970
- agent/author
- agent/references
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/trending
- collector/usn-cve
- source/Ubuntu
- agent/event
- agent/description
- agent/source
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-api
- agent/softwarecombine
- agent/tags
- collector/security-tracker-debian
- source/Debian
- vendor/linux
- canonical/linux kernel
- version/linux kernel/6.2
- version/linux kernel/6.7
- package-manager/debian