Linux · Linux Kernel · CVE-2024-43866
**Name of the Vulnerable Software and Affected Versions**
Linux kernel versions prior to 6.6.50
**Description**
The issue is related to the net/mlx5 component in the Linux kernel. During device shutdown, there is no point in recovery, and if health work has started, it needs to wait to avoid races and NULL pointer access. The solution is to drain the health work queue on shutdown callback.
**Recommendations**
For versions prior to 6.6.50, update to version 6.6.50 or later to resolve the issue.