CVE-2024-36020

i40e: fix vf may be used uninitialized in this function warning

Severity Score

5.3

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved:

i40e: fix vf may be used uninitialized in this function warning

To fix the regression introduced by commit 52424f974bc5, which causes
servers hang in very hard to reproduce conditions with resets races.
Using two sources for the information is the root cause.
In this function before the fix bumping v didn't mean bumping vf
pointer. But the code used this variables interchangeably, so stale vf
could point to different/not intended vf.

Remove redundant "v" variable and iterate via single VF pointer across
whole function instead to guarantee VF pointer validity.

En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: i40e: se puede usar vf sin inicializar en esta función advertencia Para corregir la regresión introducida por el commit 52424f974bc5, que hace que los servidores se cuelguen con mucha dificultad para reproducir condiciones con restablecimientos de ejecución. El uso de dos fuentes para la información es la causa fundamental. En esta función, antes de la corrección, tocar v no significaba tocar el puntero vf. Pero el código usaba estas variables indistintamente, por lo que un vf obsoleto podría apuntar a un vf diferente o no intencionado. Elimine la variable "v" redundante e itere mediante un único puntero VF en toda la función para garantizar la validez del puntero VF.

A flaw was found in the Linux kernel’s Ethernet Controller XL710 family driver. This flaw allows a local user to crash the system.

*Credits: N/A

CVSS Scores

Red Hatv3.1 5.3

Attack Vector

Network

Attack Complexity

High

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-05-17 CVE Reserved
2024-05-30 CVE Published
2024-05-31 EPSS Updated
2024-08-02 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

CAPEC

References (18)

URL	Tag	Source
https://git.kernel.org/stable/c/76ed715836c6994bac29d9638e9314e6e3b08651	Vuln. Introduced
https://git.kernel.org/stable/c/e88c2a1e28c5475065563d66c07ca879a9afbd07	Vuln. Introduced
https://git.kernel.org/stable/c/9abae363af5ced6adbf04c14366289540281fb26	Vuln. Introduced
https://git.kernel.org/stable/c/c39de3ae5075ea5f78e097cb5720d4e52d5caed9	Vuln. Introduced
https://git.kernel.org/stable/c/52424f974bc53c26ba3f00300a00e9de9afcd972	Vuln. Introduced
https://git.kernel.org/stable/c/02f949747e6fb767b29f7931d4bbf40911684e7a	Vuln. Introduced
https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/cc9cd02dd9e8b7764ea9effb24f4f1dd73d1b23d	2024-04-13
https://git.kernel.org/stable/c/9dcf0fcb80f6aeb01469e3c957f8d4c97365450a	2024-04-13
https://git.kernel.org/stable/c/b8e82128b44fa40bf99a50b919488ef361e1683c	2024-04-13
https://git.kernel.org/stable/c/951d2748a2a8242853abc3d0c153ce4bf8faad31	2024-04-10
https://git.kernel.org/stable/c/3e89846283f3cf7c7a8e28b342576fd7c561d2ba	2024-04-10
https://git.kernel.org/stable/c/0dcf573f997732702917af1563aa2493dc772fc0	2024-04-10
https://git.kernel.org/stable/c/06df7618f591b2dc43c59967e294d7b9fc8675b6	2024-04-10
https://git.kernel.org/stable/c/f37c4eac99c258111d414d31b740437e1925b8e8	2024-03-26

URL	Date	SRC
https://access.redhat.com/security/cve/CVE-2024-36020	2024-08-15
https://bugzilla.redhat.com/show_bug.cgi?id=2284400	2024-08-15

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.19.264 < 4.19.312 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.19.264 < 4.19.312"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.4.223 < 5.4.274 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.4.223 < 5.4.274"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.10.153 < 5.10.215 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.10.153 < 5.10.215"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.15.77 < 5.15.154 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.15.77 < 5.15.154"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.1 < 6.1.85 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.1 < 6.1.85"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.1 < 6.6.26 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.1 < 6.6.26"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.1 < 6.8.5 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.1 < 6.8.5"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.1 < 6.9 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.1 < 6.9"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				6.0.7 Search vendor "Linux" for product "Linux Kernel" and version "6.0.7"		en		Affected