vulnerability
Ubuntu: (CVE-2024-39293): linux vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:L/AC:M/Au:S/C:N/I:N/A:C) | Jun 25, 2024 | Jun 26, 2025 | Sep 19, 2025 |
Description
In the Linux kernel, the following vulnerability has been resolved:
Revert "xsk: Support redirect to any socket bound to the same umem"
This reverts commit 2863d665ea41282379f108e4da6c8a2366ba66db.
This patch introduced a potential kernel crash when multiple napi instances
redirect to the same AF_XDP socket. By removing the queue_index check, it is
possible for multiple napi instances to access the Rx ring at the same time,
which will result in a corrupted ring state which can lead to a crash when
flushing the rings in __xsk_flush(). This can happen when the linked list of
sockets to flush gets corrupted by concurrent accesses. A quick and small fix
is not possible, so let us revert this for now.
Solution
References
- CVE-2024-39293
- https://attackerkb.com/topics/CVE-2024-39293
- CWE-362
- URL-https://git.kernel.org/linus/7fcf26b315bbb728036da0862de6b335da83dff2
- URL-https://git.kernel.org/stable/c/19cb40b1064566ea09538289bfcf5bc7ecb9b6f5
- URL-https://git.kernel.org/stable/c/7fcf26b315bbb728036da0862de6b335da83dff2
- URL-https://www.cve.org/CVERecord?id=CVE-2024-39293
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.