PT-2024-9005 · Linux+8 · Linux Kernel+8
Alexandra Winter
·
Published
2024-05-30
·
Updated
2026-03-14
·
CVE-2024-36928
CVSS v2.0
4.6
Medium
| Vector | AV:L/AC:L/Au:S/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions:
Linux kernel versions prior to 6.6.37
Description:
The vulnerability is related to the s390/qeth component of the Linux kernel. When the hsuid attribute is set for the first time on an IQD Layer3 device while the corresponding network interface is already UP, the kernel will try to execute a napi function pointer that is NULL. This can cause a kernel panic.
Technical details about exploitation include:
- The
napi.pollfunctions are set duringqeth open(). - The
qeth set offline()/qeth set online()functions no longer calldev close()/dev open()due to commit 1cfef80d4c2b ("s390/qeth: Don't call dev close/dev open (DOWN/UP)"). - If
qeth free qdio queues()clearedcard->qdio.out qs[i].napi.pollwhile the network interface was UP and the card was offline, they are not set again.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
DoS
NULL Pointer Dereference
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Astra Linux
Centos
Debian
Linuxmint
Linux Kernel
Red Hat
Red Os
Suse
Ubuntu