PT-2024-35677 · Linux+8 · Linux Kernel+8
Published
2024-12-27
·
Updated
2025-11-12
·
CVE-2024-53229
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions prior to 6.1.113-storage+ #65
Description
The issue is related to the RDMA/rxe component in the Linux kernel. When the qp is in an error state, the status of WQEs in the queue should be set to error. If not, a warning will appear. The problem is resolved by fixing the qp flush warnings in req.
Recommendations
As a temporary workaround, consider disabling the
rxe completer() function until a patch is available.
To resolve the issue, update the Linux kernel to a version that includes the fix for the RDMA/rxe component.
Restrict access to the vulnerable module rdma rxe to minimize the risk of exploitation.
Avoid using the rxe do task() function in the affected API endpoint until the issue is resolved.Exploit
Fix
Infinite Loop
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Almalinux
Astra Linux
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu