CVE-2024-27013
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
01/05/2024
Last modified:
04/11/2025
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
tun: limit printing rate when illegal packet received by tun dev<br />
<br />
vhost_worker will call tun call backs to receive packets. If too many<br />
illegal packets arrives, tun_do_read will keep dumping packet contents.<br />
When console is enabled, it will costs much more cpu time to dump<br />
packet and soft lockup will be detected.<br />
<br />
net_ratelimit mechanism can be used to limit the dumping rate.<br />
<br />
PID: 33036 TASK: ffff949da6f20000 CPU: 23 COMMAND: "vhost-32980"<br />
#0 [fffffe00003fce50] crash_nmi_callback at ffffffff89249253<br />
#1 [fffffe00003fce58] nmi_handle at ffffffff89225fa3<br />
#2 [fffffe00003fceb0] default_do_nmi at ffffffff8922642e<br />
#3 [fffffe00003fced0] do_nmi at ffffffff8922660d<br />
#4 [fffffe00003fcef0] end_repeat_nmi at ffffffff89c01663<br />
[exception RIP: io_serial_in+20]<br />
RIP: ffffffff89792594 RSP: ffffa655314979e8 RFLAGS: 00000002<br />
RAX: ffffffff89792500 RBX: ffffffff8af428a0 RCX: 0000000000000000<br />
RDX: 00000000000003fd RSI: 0000000000000005 RDI: ffffffff8af428a0<br />
RBP: 0000000000002710 R8: 0000000000000004 R9: 000000000000000f<br />
R10: 0000000000000000 R11: ffffffff8acbf64f R12: 0000000000000020<br />
R13: ffffffff8acbf698 R14: 0000000000000058 R15: 0000000000000000<br />
ORIG_RAX: ffffffffffffffff CS: 0010 SS: 0018<br />
#5 [ffffa655314979e8] io_serial_in at ffffffff89792594<br />
#6 [ffffa655314979e8] wait_for_xmitr at ffffffff89793470<br />
#7 [ffffa65531497a08] serial8250_console_putchar at ffffffff897934f6<br />
#8 [ffffa65531497a20] uart_console_write at ffffffff8978b605<br />
#9 [ffffa65531497a48] serial8250_console_write at ffffffff89796558<br />
#10 [ffffa65531497ac8] console_unlock at ffffffff89316124<br />
#11 [ffffa65531497b10] vprintk_emit at ffffffff89317c07<br />
#12 [ffffa65531497b68] printk at ffffffff89318306<br />
#13 [ffffa65531497bc8] print_hex_dump at ffffffff89650765<br />
#14 [ffffa65531497ca8] tun_do_read at ffffffffc0b06c27 [tun]<br />
#15 [ffffa65531497d38] tun_recvmsg at ffffffffc0b06e34 [tun]<br />
#16 [ffffa65531497d68] handle_rx at ffffffffc0c5d682 [vhost_net]<br />
#17 [ffffa65531497ed0] vhost_worker at ffffffffc0c644dc [vhost]<br />
#18 [ffffa65531497f10] kthread at ffffffff892d2e72<br />
#19 [ffffa65531497f50] ret_from_fork at ffffffff89c0022f
Impact
Base Score 3.x
5.50
Severity 3.x
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 2.6.35 (including) | 4.19.313 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 4.20 (including) | 5.4.275 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.5 (including) | 5.10.216 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.11 (including) | 5.15.157 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.16 (including) | 6.1.88 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.2 (including) | 6.6.29 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.7 (including) | 6.8.8 (excluding) |
| cpe:2.3:o:linux:linux_kernel:6.9:rc1:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:6.9:rc2:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:6.9:rc3:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:6.9:rc4:*:*:*:*:*:* | ||
| cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:* | ||
| cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:* | ||
| cpe:2.3:o:fedoraproject:fedora:40:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- https://git.kernel.org/stable/c/14cdb43dbc827e18ac7d5b30c5b4c676219f1421
- https://git.kernel.org/stable/c/40f4ced305c6c47487d3cd8da54676e2acc1a6ad
- https://git.kernel.org/stable/c/4b0dcae5c4797bf31c63011ed62917210d3fdac3
- https://git.kernel.org/stable/c/52854101180beccdb9dc2077a3bea31b6ad48dfa
- https://git.kernel.org/stable/c/62e27ef18eb4f0d33bbae8e9ef56b99696a74713
- https://git.kernel.org/stable/c/68459b8e3ee554ce71878af9eb69659b9462c588
- https://git.kernel.org/stable/c/a50dbeca28acf7051dfa92786b85f704c75db6eb
- https://git.kernel.org/stable/c/f8bbc07ac535593139c875ffa19af924b1084540
- https://git.kernel.org/stable/c/14cdb43dbc827e18ac7d5b30c5b4c676219f1421
- https://git.kernel.org/stable/c/40f4ced305c6c47487d3cd8da54676e2acc1a6ad
- https://git.kernel.org/stable/c/4b0dcae5c4797bf31c63011ed62917210d3fdac3
- https://git.kernel.org/stable/c/52854101180beccdb9dc2077a3bea31b6ad48dfa
- https://git.kernel.org/stable/c/62e27ef18eb4f0d33bbae8e9ef56b99696a74713
- https://git.kernel.org/stable/c/68459b8e3ee554ce71878af9eb69659b9462c588
- https://git.kernel.org/stable/c/a50dbeca28acf7051dfa92786b85f704c75db6eb
- https://git.kernel.org/stable/c/f8bbc07ac535593139c875ffa19af924b1084540
- https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
- https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4EZ6PJW7VOZ224TD7N4JZNU6KV32ZJ53/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DAMSOZXJEPUOXW33WZYWCVAY7Z5S7OOY/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GCBZZEC7L7KTWWAS2NLJK6SO3IZIL4WW/