PT-2024-6911 · Linux+4 · Linux Kernel+4

Published

2024-08-23

·

Updated

2025-09-29

·

CVE-2024-46766

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.10.0-rc2+
Description The vulnerability is related to the netif queue set napi function in the Linux kernel, which can lead to out-of-bounds writes when XDP queues are included. This issue arises because netif queue set napi is called from ice vsi rebuild, which is not rtnl-locked when called from the reset, complicating synchronization with .ndo bpf. The fix involves moving netif queue set napi to rtnl-protected sections and rewriting napi-to-queue assignment to prevent XDP queue inclusion.
Recommendations To resolve this issue, update the Linux kernel to a version that includes the fix, which moves netif queue set napi to rtnl-protected sections and rewrites napi-to-queue assignment. As a temporary workaround, consider disabling the ice vsi rebuild function until a patch is available. However, this may have performance implications and should be carefully evaluated before implementation.

Exploit

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

ALSA-2025_16880
ALT-PU-2024-13260
BDU:2024-08134
CVE-2024-46766
OPENSUSE-SU-2024_3984-1
OPENSUSE-SU-2024_3986-1
SUSE-SU-2024:3984-1
SUSE-SU-2024:3986-1
SUSE-SU-2024:4318-1
SUSE-SU-2024:4387-1
SUSE-SU-2025:20163-1
SUSE-SU-2025:20164-1
SUSE-SU-2025:20246-1
SUSE-SU-2025:20247-1
USN-7154-1
USN-7154-2
USN-7155-1
USN-7156-1
USN-7196-1

Affected Products

Alt Linux
Linuxmint
Linux Kernel
Suse
Ubuntu