CVE-2024-56788

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A race condition exists between reference pointers in the Linux kernel's ethernet oa tc6 module. This issue arises from the management of two skb pointers: waiting tx skb and ongoing tx skb. The waiting tx skb pointer points to the tx skb that needs to be processed, while the ongoing tx skb pointer points to the tx skb being processed. The SPI thread prepares tx data chunks from the ongoing tx skb pointer. When the ongoing tx skb is processed, the waiting tx skb is assigned to ongoing tx skb, and waiting tx skb is set to NULL. If a new tx skb is assigned to waiting tx skb by the n/w stack while the SPI thread is processing, there's a chance to overwrite the tx skb pointer with NULL, resulting in packet loss and memory leak.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.