PT-2024-21535 · Linux+6 · Linux Kernel+6

Published

2024-04-17

Updated

2025-09-29

CVE-2024-26858

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to the net/mlx5e component of the Linux kernel, where the use of a memory barrier is necessary to enforce PTP WQ xmit submission tracking after populating the metadata map. Simply reordering the functions mlx5e ptp metadata map put and mlx5e ptpsq track metadata in the mlx5e txwqe complete context is not sufficient, as both the compiler and CPU can reorder these functions. If reordering occurs, it can lead to NULL pointer dereferences in mlx5e ptpsq mark ts cqes undelivered in the NAPI polling context due to the tracking list being populated before the metadata map.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

ALSA-2024:4583

ALSA-2025_16880

CVE-2024-26858

INFSA-2024_4583

RHSA-2024:4583

RHSA-2024_4583

RLSA-2024:4583

SUSE-SU-2024:2135-1

SUSE-SU-2024:2203-1

SUSE-SU-2024:2973-1

SUSE-SU-2025:20008-1

SUSE-SU-2025:20028-1

SUSE-SU-2025:20166-1

SUSE-SU-2025:20249-1

Affected Products

Almalinux

Astra Linux

Linux Kernel

Red Hat

Red Os

Rocky Linux

Suse

PT-2024-21535 · Linux+6 · Linux Kernel+6

CVE-2024-26858

Weakness Enumeration

Related Identifiers

Affected Products

References · 2849