CVE-2024-40905

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.10.0-rc1-syzkaller-00013-g2bfcfd584ff5

Description The vulnerability is related to a possible race in the fib6 drop pcpu from() function, which can cause a null pointer dereference. This issue can lead to a general protection fault and potentially allow an attacker to cause a denial of service. The vulnerability is caused by the compiler reading the value of *ppcpu rt more than once, and another CPU clearing the value in rt6 get pcpu route() between the reads. To prevent this race, a READ ONCE() has been added, and rcu read lock() and rcu read unlock() have been added to ensure RCU protection while dereferencing pcpu rt.

Recommendations To resolve this issue, update the Linux kernel to a version that includes the fix for this vulnerability, which is version 6.10.0-rc1-syzkaller-00013-g2bfcfd584ff5 or later. As a temporary workaround, consider disabling the fib6 drop pcpu from() function until a patch is available. However, this may have unintended consequences and should be done with caution.