Home

CVE-2024-27026

Description

In the Linux kernel, the following vulnerability has been resolved:vmxnet3: Fix missing reserved tailroomUse rbi->len instead of rcd->len for non-dataring packet.Found issue: XDP_WARN: xdp_update_frame_from_buff(line:278): Driver BUG: missing reserved tailroom WARNING: CPU: 0 PID: 0 at net/core/xdp.c:586 xdp_warn+0xf/0x20 CPU: 0 PID: 0 Comm: swapper/0 Tainted: G W O 6.5.1 #1 RIP: 0010:xdp_warn+0xf/0x20 ... xdp_warn+0xf/0x20 xdp_do_redirect+0x15f/0x1c0 vmxnet3_run_xdp+0x17a/0x400 [vmxnet3] vmxnet3_process_xdp+0xe4/0x760 [vmxnet3] vmxnet3_tq_tx_complete.isra.0+0x21e/0x2c0 [vmxnet3] vmxnet3_rq_rx_complete+0x7ad/0x1120 [vmxnet3] vmxnet3_poll_rx_only+0x2d/0xa0 [vmxnet3] __napi_poll+0x20/0x180 net_rx_action+0x177/0x390

Risk Information

Base Score
5.5
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.011

Associated Vulnerability

VulnerabilityOS Platform
Linux kernel (USN-6816-1) linux-image-6.8.0-1006-ibm_6.8.0-1006.6_amd64.debLinux
Linux kernel (USN-6816-1) linux-image-6.8.0-35-generic_6.8.0-35.35+1_amd64.debLinux
Linux kernel (USN-6816-1) linux-image-6.8.0-35-lowlatency_6.8.0-35.35.1_amd64.debLinux
Linux kernel (USN-6816-1) linux-image-generic_6.8.0-35.35_amd64.debLinux
Linux kernel (USN-6816-1) linux-image-generic-hwe-24.04_6.8.0-35.35_amd64.debLinux
Linux kernel (USN-6816-1) linux-image-ibm_6.8.0-1006.6_amd64.debLinux
Linux kernel (USN-6816-1) linux-image-ibm-classic_6.8.0-1006.6_amd64.debLinux
Linux kernel (USN-6816-1) linux-image-ibm-lts-24.04_6.8.0-1006.6_amd64.debLinux
Linux kernel (USN-6816-1) linux-image-kvm_6.8.0-35.35_amd64.debLinux
Linux kernel (USN-6816-1) linux-image-lowlatency_6.8.0-35.35.1_amd64.debLinux
Linux kernel (USN-6816-1) linux-image-virtual_6.8.0-35.35_amd64.debLinux
Linux kernel (USN-6816-1) linux-image-virtual-hwe-24.04_6.8.0-35.35_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-6817-1) linux-image-6.8.0-1008-gcp_6.8.0-1008.9_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-6817-1) linux-image-6.8.0-1009-aws_6.8.0-1009.9_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-6817-1) linux-image-aws_6.8.0-1009.9_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-6817-1) linux-image-gcp_6.8.0-1008.9_amd64.debLinux
Linux kernel for OEM systems (USN-6817-2) linux-image-6.8.0-1006-oem_6.8.0-1006.6_amd64.debLinux
Linux kernel for OEM systems (USN-6817-2) linux-image-oem-24.04_6.8.0-1006.6+1_amd64.debLinux
Linux kernel for OEM systems (USN-6817-2) linux-image-oem-24.04a_6.8.0-1006.6+1_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-6817-3) linux-image-6.8.0-1004-gke_6.8.0-1004.7_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-6817-3) linux-image-6.8.0-1008-azure_6.8.0-1008.8_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-6817-3) linux-image-6.8.0-1008-azure-fde_6.8.0-1008.8_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-6817-3) linux-image-azure_6.8.0-1008.8_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-6817-3) linux-image-azure-fde_6.8.0-1008.8_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-6817-3) linux-image-gke_6.8.0-1004.7_amd64.debLinux
Linux kernel for Oracle Cloud systems (USN-6878-1) linux-image-6.8.0-1006-oracle_6.8.0-1006.6_amd64.debLinux
Linux kernel for Oracle Cloud systems (USN-6878-1) linux-image-oracle_6.8.0-1006.6_amd64.debLinux
SUSE-SU-2024:3984-1(Public Cloud Module 15-SP6) kernel-azure-6.4.0-150600.8.17.2.x86_64.rpmLinux
SUSE-SU-2024:3984-1(Public Cloud Module 15-SP6) kernel-azure-debuginfo-6.4.0-150600.8.17.2.x86_64.rpmLinux
SUSE-SU-2024:3984-1(Public Cloud Module 15-SP6) kernel-azure-debugsource-6.4.0-150600.8.17.2.x86_64.rpmLinux
SUSE-SU-2024:3984-1(Public Cloud Module 15-SP6) kernel-azure-devel-6.4.0-150600.8.17.2.x86_64.rpmLinux
SUSE-SU-2024:3984-1(Public Cloud Module 15-SP6) kernel-azure-devel-debuginfo-6.4.0-150600.8.17.2.x86_64.rpmLinux
SUSE-SU-2024:3984-1(Public Cloud Module 15-SP6) kernel-devel-azure-6.4.0-150600.8.17.1.noarch.rpmLinux
SUSE-SU-2024:3984-1(Public Cloud Module 15-SP6) kernel-source-azure-6.4.0-150600.8.17.1.noarch.rpmLinux
SUSE-SU-2024:3984-1(Public Cloud Module 15-SP6) kernel-syms-azure-6.4.0-150600.8.17.1.x86_64.rpmLinux
SUSE-SU-2024:4318-1(Basesystem Module 15-SP6) kernel-default-6.4.0-150600.23.30.1.x86_64.rpmLinux
SUSE-SU-2024:4318-1(Basesystem Module 15-SP6) kernel-default-base-6.4.0-150600.23.30.1.150600.12.12.6.x86_64.rpmLinux
SUSE-SU-2024:4318-1(Basesystem Module 15-SP6) kernel-default-debuginfo-6.4.0-150600.23.30.1.x86_64.rpmLinux
SUSE-SU-2024:4318-1(Basesystem Module 15-SP6) kernel-default-debugsource-6.4.0-150600.23.30.1.x86_64.rpmLinux
SUSE-SU-2024:4318-1(Basesystem Module 15-SP6) kernel-default-devel-6.4.0-150600.23.30.1.x86_64.rpmLinux
SUSE-SU-2024:4318-1(Basesystem Module 15-SP6) kernel-default-devel-debuginfo-6.4.0-150600.23.30.1.x86_64.rpmLinux
SUSE-SU-2024:4318-1(Basesystem Module 15-SP6) kernel-devel-6.4.0-150600.23.30.1.noarch.rpmLinux
SUSE-SU-2024:4318-1(Development Tools Module 15-SP6) kernel-docs-6.4.0-150600.23.30.1.noarch.rpmLinux
SUSE-SU-2024:4318-1(Legacy Module 15-SP6) reiserfs-kmp-default-debuginfo-6.4.0-150600.23.30.1.x86_64.rpmLinux
SUSE-SU-2024:4318-1(Basesystem Module 15-SP6) kernel-macros-6.4.0-150600.23.30.1.noarch.rpmLinux
SUSE-SU-2024:4318-1(Development Tools Module 15-SP6) kernel-obs-build-6.4.0-150600.23.30.1.x86_64.rpmLinux
SUSE-SU-2024:4318-1(Development Tools Module 15-SP6) kernel-obs-build-debugsource-6.4.0-150600.23.30.1.x86_64.rpmLinux
SUSE-SU-2024:4318-1(Development Tools Module 15-SP6) kernel-source-6.4.0-150600.23.30.1.noarch.rpmLinux
SUSE-SU-2024:4318-1(Development Tools Module 15-SP6) kernel-syms-6.4.0-150600.23.30.1.x86_64.rpmLinux
SUSE-SU-2024:4318-1(Legacy Module 15-SP6) reiserfs-kmp-default-6.4.0-150600.23.30.1.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234