CVE-2024-53044

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue arises when the tc qdisc command is used with the same block index for both ingress and egress, causing the xa insert() function to fail. This failure leads to an irrecoverable state where the FLOW BLOCK BIND command is emitted but not followed by a corresponding FLOW BLOCK UNBIND. The problem is exacerbated by the fact that the clsact init() function obtains the same pointer for both ingress and egress blocks, resulting in the dev being added to the block->ports xarray twice. The estimated number of potentially affected devices is not provided. There is no information about real-world incidents where this issue was exploited.

Recommendations To fix the bug, the correct error teardown path needs to be filled, and tcf block offload unbind() should be called when xa insert() fails. As a temporary workaround, consider rebooting the system or unbinding and rebinding the net device driver to recover from the irrecoverable state. At the moment, there is no information about a newer version that contains a fix for this vulnerability.