CVE-2024-42083

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.10.0-rc3+

Description The issue is related to the handling of multi-buffer packets in the Linux kernel, specifically in the ionic run xdp() function. When a jumbo frame is received, the function fails to properly unmap dma-mapping and reset page pointers to NULL for all pages, leading to the unexpected reuse of SG pages and eventually causing a kernel panic. The vulnerability is triggered when the action is either XDP TX or XDP REDIRECT.

Recommendations To resolve the issue, update the Linux kernel to a version newer than 6.10.0-rc3+. As a temporary workaround, consider disabling the ionic run xdp() function until a patch is available. Restrict access to the vulnerable ionic module to minimize the risk of exploitation. Avoid using the XDP TX and XDP REDIRECT actions in the affected API endpoints until the issue is resolved.