Informazioni sul CVE-2024-41047
i40e: Fix XDP program unloading while removing the driver
CWE ID: N/A
Base Score (CVSS): N/A
CVE: CVE-2024-41047
Descrizione: “The Linux kernel has resolved a vulnerability in the i40e program. The commit 6533e558c650 introduced a new PF state, “__I40E_IN_REMOVE”, to block modifying the XDP program while it’s being unloaded. Unfortunately, this change is only useful if the `.ndo_bpf()` callback was called out of the `rmmod` context, which is also part of unloading the existing XDP program. In essence, the kernel is expected to unload the XDP program without loading a new one while the `__I40E_IN_REMOVE` flag is set. Furthermore, the testing of this flag should be moved to the beginning of the `XDP_SETUP` callback to avoid unnecessary checks and operations.”
Vettore di attacco
Punteggio CVSS
Il CVSS è un sistema di valutazione che misura la gravità di una vulnerabilità informatica considerando fattori come l’impatto potenziale, la probabilità di attacco e la facilità di esecuzione.
Riassunto: .
Dettaglio del Vettore
| Metrica | Valore | Significato | Descrizione |
|---|
Riferimenti esterni
- https://git.kernel.org/stable/c/b399a68054dfb36eed121846ef5fcddba40b7740
- https://git.kernel.org/stable/c/4bc336b2345f1485438c0eb7246d9c8a8d09f8ff
- https://git.kernel.org/stable/c/5266302cb2c74d8ab0e9a69d5752fffaea70496e
- https://git.kernel.org/stable/c/0075b8c94d76830c7b6f018f6e4eeb0bf6465fdc
- https://git.kernel.org/stable/c/01fc5142ae6b06b61ed51a624f2732d6525d8ea3
Prodotti interessati
- Linux – Linux
- Linux – Linux