CVE-2024-39507

Updated:

Description:

In the Linux kernel, the following vulnerability has been resolved: net: hns3: fix kernel crash problem in concurrent scenario When link status change, the nic driver need to notify the roce driver to handle this event, but at this time, the roce driver may uninit, then cause kernel crash. To fix the problem, when link status change, need to check whether the roce registered, and when uninit, need to wait link update finish.

CVSS3: 5.5


Vendor State

OS Vendor version Errata
Ubuntu 22.04 5.15.0-121.131 USN-7007-1
Ubuntu 22.04 AWS 5.15.0-1069.75 USN-7007-1
Ubuntu 22.04 Azure 5.15.0-1072.81 USN-7009-1
RHEL 9 5.14.0-503.11.1.el9_5 RHSA-2024:9315
Ubuntu 20.04 HWE AWS 5.15.0-1069.75~20.04.1 USN-7007-1
Ubuntu 20.04 HWE Azure 5.15.0-1072.81~20.04.1 USN-7009-1
Oracle Linux 9 UEK 7 5.15.0-210.163.7.el9uek ELSA-2024-12618
Oracle Linux 8 UEK 7 5.15.0-210.163.7.el8uek ELSA-2024-12618
Debian 12 6.1.99-1 DSA-5731-1
Ubuntu 24.04 6.8.0-44.44 USN-6999-1

KernelCare State

OS Original kernel version State
Ubuntu 22.04
Ready For Release
Ubuntu 22.04 AWS
Ready For Release
Ubuntu 22.04 Azure
Planned
RHEL 9
In Progress
Ubuntu 20.04 HWE AWS
Ready For Release
Ubuntu 20.04 HWE Azure
Planned
Oracle Linux 9 UEK 7
Planned
Oracle Linux 8 UEK 7
Planned
Debian 12
Planned
Ubuntu 24.04
Planned