CVE-2024-43866

CVSS v3.1

4.7

Medium

Vector

AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.50

Description The issue is related to the net/mlx5 component in the Linux kernel. During device shutdown, there is no point in recovery, and if health work has started, it needs to wait to avoid races and NULL pointer access. The solution is to drain the health work queue on shutdown callback.

Recommendations For versions prior to 6.6.50, update to version 6.6.50 or later to resolve the issue.

Exploit

Fix

DoS

NULL Pointer Dereference

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476CWE-362

Related Identifiers

ALSA-2025_12746

ALSA-2025_12752

ALSA-2025_12753

ALSA-2025_16880

AZL-56163

BDU:2025-08027

CVE-2024-43866

DLA-4008-1

INFSA-2024_9315

MGASA-2024-0309

MGASA-2024-0310

OESA-2024-2076

OESA-2024-2077

OESA-2024-2078

OESA-2024-2080

OPENSUSE-SU-2024_3190-1

OPENSUSE-SU-2024_3209-1

OPENSUSE-SU-2024_3483-1

RHSA-2024:9315

RHSA-2024_9315

SUSE-SU-2024:3189-1

SUSE-SU-2024:3190-1

SUSE-SU-2024:3194-1

SUSE-SU-2024:3195-1

SUSE-SU-2024:3209-1

SUSE-SU-2024:3251-1

SUSE-SU-2024:3252-1

SUSE-SU-2024:3383-1

SUSE-SU-2024:3483-1

SUSE-SU-2025:20044-1

SUSE-SU-2025:20047-1

USN-7154-1

USN-7154-2

USN-7155-1

USN-7156-1

USN-7196-1

Affected Products

Astra Linux

Debian

Linuxmint

Linux Kernel

Red Hat

Red Os

Suse

Ubuntu

CVE-2024-43866

Weakness Enumeration

Related Identifiers

Affected Products

References · 2034