Linux · Linux Kernel · CVE-2024-36887
Name of the Vulnerable Software and Affected Versions:
Linux kernel (affected versions not specified)
Description:
The issue is related to the e1000e component of the Linux kernel, where the use of `usleep range` inside PHY access routines can lead to a kernel panic in certain scenarios, such as cable disconnection and reconnection on vPro systems. This is due to `usleep range` being called from an atomic context. The problem can be solved by changing the `usleep range` calls back to `udelay`. There is no information about the estimated number of potentially affected devices or real-world incidents where this issue was exploited.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.