medium
5.5
CWE
667
Advisory Published
Updated

CVE-2024-49980: vrf: revert "vrf: Remove unnecessary RCU-bh critical section"

First published: Mon Oct 21 2024(Updated: )

In the Linux kernel, the following vulnerability has been resolved: vrf: revert "vrf: Remove unnecessary RCU-bh critical section" This reverts commit 504fc6f4f7f681d2a03aa5f68aad549d90eab853. dev_queue_xmit_nit is expected to be called with BH disabled. __dev_queue_xmit has the following: /* Disable soft irqs for various locks below. Also * stops preemption for RCU. */ rcu_read_lock_bh(); VRF must follow this invariant. The referenced commit removed this protection. Which triggered a lockdep warning: ================================ WARNING: inconsistent lock state 6.11.0 #1 Tainted: G W -------------------------------- inconsistent {IN-SOFTIRQ-W} -> {SOFTIRQ-ON-W} usage. btserver/134819 [HC0[0]:SC0[0]:HE1:SE1] takes: ffff8882da30c118 (rlock-AF_PACKET){+.?.}-{2:2}, at: tpacket_rcv+0x863/0x3b30 {IN-SOFTIRQ-W} state was registered at: lock_acquire+0x19a/0x4f0 _raw_spin_lock+0x27/0x40 packet_rcv+0xa33/0x1320 __netif_receive_skb_core.constprop.0+0xcb0/0x3a90 __netif_receive_skb_list_core+0x2c9/0x890 netif_receive_skb_list_internal+0x610/0xcc0 [...] other info that might help us debug this: Possible unsafe locking scenario: CPU0 ---- lock(rlock-AF_PACKET); <Interrupt> lock(rlock-AF_PACKET); *** DEADLOCK *** Call Trace: <TASK> dump_stack_lvl+0x73/0xa0 mark_lock+0x102e/0x16b0 __lock_acquire+0x9ae/0x6170 lock_acquire+0x19a/0x4f0 _raw_spin_lock+0x27/0x40 tpacket_rcv+0x863/0x3b30 dev_queue_xmit_nit+0x709/0xa40 vrf_finish_direct+0x26e/0x340 [vrf] vrf_l3_out+0x5f4/0xe80 [vrf] __ip_local_out+0x51e/0x7a0 [...]

Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Affected SoftwareAffected VersionHow to fix
Linux kernel>=6.6<6.6.55
Linux kernel>=6.7<6.10.14
Linux kernel>=6.11<6.11.3
Linux kernel=6.12-rc1
Linux Kernel>=6.6<6.6.55
Linux Kernel>=6.7<6.10.14
Linux Kernel>=6.11<6.11.3
Linux Kernel=6.12-rc1
debian/linux
5.10.223-1
5.10.234-1
6.1.129-1
6.1.128-1
6.12.20-1
6.12.21-1

Remedy

https://git.kernel.org/stable/c/718a752bd746b3f4dd62516bb437baf73d548415

Remedy

https://git.kernel.org/stable/c/8c9381b3138246d46536db93ed696832abd70204

Remedy

https://git.kernel.org/stable/c/b04c4d9eb4f25b950b33218e33b04c94e7445e51

Remedy

https://git.kernel.org/stable/c/e61f8c4d179b2ffc0d3b7f821c3734be738643d0

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2024-49980?

    CVE-2024-49980 has a medium severity level due to potential impact on the Linux kernel's network functionality.

  • How do I fix CVE-2024-49980?

    To fix CVE-2024-49980, update the Linux kernel to versions beyond 6.6.55, 6.10.14, 6.11.3, or 6.12-rc1 to include the necessary patches.

  • What systems are affected by CVE-2024-49980?

    CVE-2024-49980 affects specific versions of the Linux kernel including versions 6.6 to 6.6.55, 6.7 to 6.10.14, and 6.11 to 6.11.3.

  • What are the symptoms of CVE-2024-49980 exploitation?

    Symptoms of CVE-2024-49980 exploitation may include unexpected network behavior or performance degradation in systems running the affected kernel versions.

  • Is there a workaround for CVE-2024-49980?

    There are no specific workarounds recommended for CVE-2024-49980; timely kernel updates are advised as the primary mitigation.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203