CVE-2024-43897

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been resolved, which involves dropping bad GSO csum start and offset in virtio net hdr. The function already checks that a checksum requested with VIRTIO NET HDR F NEEDS CSUM is in skb linear, but for GSO packets, this might not hold for segs after segmentation. Syzkaller demonstrated to reach this warning in skb checksum help by injecting a TSO packet. The geometry of the bad input packet at tcp gso segment is provided. To mitigate this, stricter input validation is required. For GSO packets, the correct value of csum offset should be deduced from gso type, and for csum start, the real offset requires parsing to the transport header using existing segmentation parsing.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.