Informazioni sul CVE-2024-36007
mlxsw: spectrum_acl_tcam: Fix warning during rehash
CWE ID: N/A
Base Score (CVSS): N/A
CVE: CVE-2024-36007
Descrizione: In the Linux kernel, a vulnerability has been resolved inmlxsw: spectrum_acl_tcam.
The rehash process, which migrates filters from one region to another, is delayed. It iterates through all filters in each region, and when a filter runs out of credits, it stores the current chunk and entry as markers.
Upon encountering an error, the chunk marker is reset, but the entry markers remain relative to the current chunk. This can lead to migration from an entry that doesn’t belong to the chunk being migrated. Consequently, this can result in a chunk being iterated over as if it were an entry.
The fix involves creating a helper function to reset all markers and calling it from all places where it only resets the chunk marker. A warning has been added to prevent future occurrences.
[1]
WARNING: CPU: 7 PID: 1076 at drivers/net/ethernet/mellanox/mlxsw/core_acl_flex_keys.c:407 mlxsw_afk_encode+0x242/0x2f0
Modules linked in:
CPU: 7 PID: 1076 Comm: kworker/7:24 Tainted: G W 6.9.0-rc3-custom-00880-g29e61d91b77b #29
Hardware name: Mellanox Technologies Ltd. MSN3700/VMOD0005, BIOS 5.11 01/06/2019
Workqueue: mlxsw_core mlxsw_sp_acl_tcam_vregion_rehash_work
RIP: 0010:mlxsw_afk_encode+0x242/0x2f0
[…]
Call Trace:
Vettore di attacco Il CVSS è un sistema di valutazione che misura la gravità di una vulnerabilità informatica considerando fattori come l’impatto potenziale, la probabilità di attacco e la facilità di esecuzione. Riassunto: .Punteggio CVSS
Dettaglio del Vettore
Metrica
Valore
Significato
Descrizione
Riferimenti esterni
Prodotti interessati
Relazioni con altri prodotti