Lucene search

Debian Security Bug TrackerDEBIANCVE:CVE-2024-39507

HistoryJul 12, 2024 - 1:15 p.m.

CVE-2024-39507

2024-07-1213:15:13

Debian Security Bug Tracker

security-tracker.debian.org

linux kernel

vulnerability

cve-2024-39507

net

hns3

kernel crash

link status

nic driver

roce driver

concurrent scenario

fix

event

uninit

wait update.

AI Score

6.9

Confidence

Low

EPSS

Percentile

15.9%

JSON

In the Linux kernel, the following vulnerability has been resolved: net: hns3: fix kernel crash problem in concurrent scenario When link status change, the nic driver need to notify the roce driver to handle this event, but at this time, the roce driver may uninit, then cause kernel crash. To fix the problem, when link status change, need to check whether the roce registered, and when uninit, need to wait link update finish.

OSVersionArchitecturePackageVersionFilename
Debian12alllinux< 6.1.99-1linux_6.1.99-1_all.deb
Debian11alllinux<= 5.10.223-1linux_5.10.223-1_all.deb
Debian999alllinux< 6.9.7-1linux_6.9.7-1_all.deb
Debian13alllinux< 6.9.7-1linux_6.9.7-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	linux	< 6.1.99-1	linux_6.1.99-1_all.deb
Debian	11	all	linux	<= 5.10.223-1	linux_5.10.223-1_all.deb
Debian	999	all	linux	< 6.9.7-1	linux_6.9.7-1_all.deb
Debian	13	all	linux	< 6.9.7-1	linux_6.9.7-1_all.deb