Linux · Linux Kernel · CVE-2024-38586
Name of the Vulnerable Software and Affected Versions:
Linux kernel (affected versions not specified)
Description:
The issue is related to the r8169 component of the Linux kernel, which can cause ring buffer corruption when transmitting small fragmented packets. This is due to the `rtl8169 start xmit()` function not noticing changes to `nr frags` when packets are padded to work around hardware quirks in `rtl8169 tso csum v2()`. The problem leads to invalid entries being inserted into the transmit ring buffer, resulting in calls to `dma unmap single()` with a null address. To fix this, the inspection of `nr frags` is postponed until after any padding has been applied.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.