CVE-2024-42110

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.43

Description The issue arises from the idxd driver interrupt completion handler using threaded interrupt, which is not compatible with the hard or soft interrupt context required by netif rx(). To resolve this, the call to netif rx() needs to be modified to allow completion via normal context for dmaengine drivers that utilize threaded irq handling. The code should use netif rx ni() or netif rx any context() instead of netif rx().

Recommendations To resolve the issue, update the Linux kernel to version 6.6.43 or later. If updating is not possible, consider temporarily disabling the idxd driver or restricting its use to minimize the risk of exploitation.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-372

Related Identifiers

ALSA-2024:5928

ALSA-2025_16880

BDU:2025-08036

CVE-2024-42110

DLA-4008-1

INFSA-2024_5928

MGASA-2024-0277

MGASA-2024-0278

OESA-2025-1097

OPENSUSE-SU-2024_3190-1

OPENSUSE-SU-2024_3209-1

OPENSUSE-SU-2024_3483-1

RHSA-2024:5928

RHSA-2024_5928

SUSE-SU-2024:3189-1

SUSE-SU-2024:3190-1

SUSE-SU-2024:3194-1

SUSE-SU-2024:3195-1

SUSE-SU-2024:3209-1

SUSE-SU-2024:3251-1

SUSE-SU-2024:3252-1

SUSE-SU-2024:3383-1

SUSE-SU-2024:3483-1

SUSE-SU-2025:20044-1

SUSE-SU-2025:20047-1

USN-7089-1

USN-7089-2

USN-7089-3

USN-7089-4

USN-7089-5

USN-7089-6

USN-7089-7

USN-7090-1

USN-7095-1

USN-7156-1

Affected Products

Almalinux

Astra Linux

Debian

Linuxmint

Linux Kernel

Red Hat

Red Os

Suse

Ubuntu

CVE-2024-42110

Weakness Enumeration

Related Identifiers

Affected Products

References · 2078