CVE-2024-40923

Name of the Vulnerable Software and Affected Versions: Linux kernel version 6.9.3

Description: The vulnerability is related to the vmxnet3 component of the Linux kernel. When the vmxnet3 rq create() function fails to allocate memory for rq->data ring.base, the subsequent call to vmxnet3 rq destroy all rxdataring does not reset rq->data ring.desc size for the data ring that failed. This causes the hypervisor to reference the data ring on packet reception, leading to a potential denial-of-service issue. The vulnerability can be fixed by setting rq->data ring.desc size to 0.

Recommendations: To resolve this issue, update the Linux kernel to a version that includes the fix for this vulnerability. Specifically, ensure that the rq->data ring.desc size is set to 0 when vmxnet3 rq create() fails to allocate memory for rq->data ring.base. This can be achieved by applying the relevant patch or updating to a newer kernel version that includes this fix.

Note: The provided input descriptions do not specify the exact version that includes the fix, so it is recommended to update to the latest available kernel version to ensure the vulnerability is resolved.