CVE-2024-38586

Updated: 2026-02-27 02:20:04.881628

Description:

In the Linux kernel, the following vulnerability has been resolved: r8169: Fix possible ring buffer corruption on fragmented Tx packets. An issue was found on the RTL8125b when transmitting small fragmented packets, whereby invalid entries were inserted into the transmit ring buffer, subsequently leading to calls to dma_unmap_single() with a null address. This was caused by rtl8169_start_xmit() not noticing changes to nr_frags which may occur when small packets are padded (to work around hardware quirks) in rtl8169_tso_csum_v2(). To fix this, postpone inspecting nr_frags until after any padding has been applied.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0.0
CVSS Version 3.x HIGH 7.8

Status

OS name Project name Version Score Severity Status Errata Last updated

Statement
AlmaLinux 9.2 ESU kernel 5.14.0 7.8 HIGH Released CLSA-2025:1743193221 2024-08-01 14:29:48
CentOS 6 ELS kernel 2.6.32 7.8 HIGH Not Vulnerable 2025-09-20 17:01:49 Ignored due to low severity
CentOS 7 ELS kernel 3.10.0 7.8 HIGH Not Vulnerable 2025-09-20 17:01:42 Ignored due to low severity
CentOS 8.4 ELS kernel 4.18.0 7.8 HIGH Released CLSA-2026:1771078945 2026-02-14 21:38:23 Ignored due to low severity
CentOS 8.5 ELS kernel 4.18.0 7.8 HIGH Released CLSA-2026:1771077729 2026-02-14 21:38:24 Ignored due to low severity
CentOS Stream 8 ELS kernel 4.18.0 7.8 HIGH Released CLSA-2025:1763722365 2026-01-27 08:09:24 Ignored due to low severity
CloudLinux 6 ELS kernel 2.6.32 7.8 HIGH Needs Triage 2025-09-20 06:23:20 Ignored due to low severity
CloudLinux 7 ELS kernel 3.10.0 7.8 HIGH Ignored 2025-09-23 10:46:36 Postponed until request or high risk detected
Oracle Linux 6 ELS kernel 2.6.32 7.8 HIGH Not Vulnerable 2025-11-02 11:24:25 Ignored due to low severity