PT-2024-28069 · Linux+9 · Linux Kernel+9

Published

2024-05-09

·

Updated

2026-05-26

·

CVE-2024-38556

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.37
Description The issue is related to the net/mlx5 component of the Linux kernel, where a timeout has been added to acquire the command queue semaphore. This change prevents forced completion handling on an entry that has not yet been assigned an index, which could cause an out of bounds access. The kernel log example provided shows an instance of this issue, where the wait func handle exec timeout function is called with a command index of -22, resulting in a "No done completion" error for the CREATE UCTX command.
Recommendations Update to Linux kernel version 6.6.37 or later to resolve the issue. As a temporary workaround, consider disabling the net/mlx5 component until a patch is available. Restrict access to the vulnerable CREATE UCTX command to minimize the risk of exploitation. Avoid using the cmd index in the affected kernel log example until the issue is resolved.

Exploit

Fix

DoS

Out of bounds Read

Improper Validation of Array Index

Weakness Enumeration

CWE-125CWE-129

Related Identifiers

ALSA-2024:8162
ALSA-2025_16880
AZL-57841
BDU:2025-08062
CVE-2024-38556
INFSA-2024_8162
MGASA-2024-0263
MGASA-2024-0266
OESA-2024-1792
OESA-2024-1795
OESA-2024-1796
OESA-2024-1960
OPENSUSE-SU-2024_2372-1
OPENSUSE-SU-2024_2394-1
RHSA-2024:5364
RHSA-2024:5365
RHSA-2024:8162
RHSA-2024_8162
RLSA-2024:8162
SUSE-SU-2024:2372-1
SUSE-SU-2024:2394-1
SUSE-SU-2024:2571-1
SUSE-SU-2024:2896-1
SUSE-SU-2024:2939-1
SUSE-SU-2024:2973-1
SUSE-SU-2025:20008-1
SUSE-SU-2025:20028-1
USN-6949-1
USN-6949-2
USN-6952-1
USN-6952-2
USN-6955-1

Affected Products

Almalinux
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu