CVE-2024-26810

Updated: 2025-08-20 02:42:30.868081

Description:

In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Lock external INTx masking ops Mask operations through config space changes to DisINTx may race INTx configuration changes via ioctl. Create wrappers that add locking for paths outside of the core interrupt code. In particular, irq_type is updated holding igate, therefore testing is_intx() requires holding igate. For example clearing DisINTx from config space can otherwise race changes of the interrupt configuration. This aligns interfaces which may trigger the INTx eventfd into two camps, one side serialized by igate and the other only enabled while INTx is configured. A subsequent patch introduces synchronization for the latter flows.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x NONE 0.0
CVSS Version 3.x MEDIUM 4.4

Status

OS name Project name Version Score Severity Status Errata Last updated

Statement
AlmaLinux 9.2 ESU kernel 5.14.0 4.4 MEDIUM Ignored 2025-09-23 11:06:37 This issue is confined to vfio-pci’s legacy INTx path and occurs only when a passthrough device’...
CentOS 6 ELS kernel 2.6.32 4.4 MEDIUM Ignored 2024-07-25 05:17:50 Ignored due to low severity
CentOS 7 ELS kernel 3.10.0 4.4 MEDIUM Ignored 2024-07-25 05:17:50 Ignored due to low severity
CentOS 8.4 ELS kernel 4.18.0 4.4 MEDIUM Ignored 2024-08-20 12:21:48 Ignored due to low severity
CentOS 8.5 ELS kernel 4.18.0 4.4 MEDIUM Ignored 2024-08-20 12:21:48 Ignored due to low severity
CentOS Stream 8 ELS kernel 4.18.0 4.4 MEDIUM Ignored 2024-08-20 12:21:48 Ignored due to low severity
CloudLinux 6 ELS kernel 2.6.32 4.4 MEDIUM Ignored 2024-07-25 05:17:50 Ignored due to low severity
CloudLinux 7 ELS kernel 3.10.0 4.4 MEDIUM Ignored 2024-07-25 05:17:50 Ignored due to low severity
Oracle Linux 6 ELS kernel 2.6.32 4.4 MEDIUM Ignored 2024-07-25 05:17:50 Ignored due to low severity
Ubuntu 16.04 ELS linux-hwe 4.15.0 4.4 MEDIUM Released CLSA-2024:1721664120 2024-07-22 14:24:10
Total: 12