CVE-2024-57933

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2024-57933
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-57933.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-57933
Downstream
Related
Published
2025-01-21T12:01:29Z
Modified
2025-10-17T20:01:34.189598Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
gve: guard XSK operations on the existence of queues
Details

In the Linux kernel, the following vulnerability has been resolved:

gve: guard XSK operations on the existence of queues

This patch predicates the enabling and disabling of XSK pools on the existence of queues. As it stands, if the interface is down, disabling or enabling XSK pools would result in a crash, as the RX queue pointer would be NULL. XSK pool registration will occur as part of the next interface up.

Similarly, xskwakeup needs be guarded against queues disappearing while the function is executing, so a check against the GVEPRIVFLAGSNAPIENABLED flag is added to synchronize with the disabling of the bit and the synchronizenet() in gve_turndown.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
fd8e40321a12391e6f554cc637d0c4b6109682a9
Fixed
771d66f2bd8c4dba1286a9163ab982cecd825718
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
fd8e40321a12391e6f554cc637d0c4b6109682a9
Fixed
8e8d7037c89437af12725f454e2eaf40e8166c0f
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
fd8e40321a12391e6f554cc637d0c4b6109682a9
Fixed
40338d7987d810fcaa95c500b1068a52b08eec9b

Affected versions

v6.*

v6.10
v6.10-rc1
v6.10-rc2
v6.10-rc3
v6.10-rc4
v6.10-rc5
v6.10-rc6
v6.10-rc7
v6.11
v6.11-rc1
v6.11-rc2
v6.11-rc3
v6.11-rc4
v6.11-rc5
v6.11-rc6
v6.11-rc7
v6.12
v6.12-rc1
v6.12-rc2
v6.12-rc3
v6.12-rc4
v6.12-rc5
v6.12-rc6
v6.12-rc7
v6.12.1
v6.12.2
v6.12.3
v6.12.4
v6.12.5
v6.12.6
v6.12.7
v6.12.8
v6.13-rc1
v6.13-rc2
v6.13-rc3
v6.3
v6.3-rc2
v6.3-rc3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.5
v6.5-rc1
v6.5-rc2
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.14
v6.6.15
v6.6.16
v6.6.17
v6.6.18
v6.6.19
v6.6.2
v6.6.20
v6.6.21
v6.6.22
v6.6.23
v6.6.24
v6.6.25
v6.6.26
v6.6.27
v6.6.28
v6.6.29
v6.6.3
v6.6.30
v6.6.31
v6.6.32
v6.6.33
v6.6.34
v6.6.35
v6.6.36
v6.6.37
v6.6.38
v6.6.39
v6.6.4
v6.6.40
v6.6.41
v6.6.42
v6.6.43
v6.6.44
v6.6.45
v6.6.46
v6.6.47
v6.6.48
v6.6.49
v6.6.5
v6.6.50
v6.6.51
v6.6.52
v6.6.53
v6.6.54
v6.6.55
v6.6.56
v6.6.57
v6.6.58
v6.6.59
v6.6.6
v6.6.60
v6.6.61
v6.6.62
v6.6.63
v6.6.64
v6.6.65
v6.6.66
v6.6.67
v6.6.68
v6.6.69
v6.6.7
v6.6.8
v6.6.9
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5
v6.8-rc6
v6.8-rc7
v6.9
v6.9-rc1
v6.9-rc2
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7

Database specific

vanir_signatures

[
    {
        "id": "CVE-2024-57933-0748932f",
        "digest": {
            "length": 1079.0,
            "function_hash": "276199687508572608144024418977312213709"
        },
        "signature_version": "v1",
        "target": {
            "file": "drivers/net/ethernet/google/gve/gve_main.c",
            "function": "gve_xsk_pool_disable"
        },
        "deprecated": false,
        "signature_type": "Function",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@40338d7987d810fcaa95c500b1068a52b08eec9b"
    },
    {
        "id": "CVE-2024-57933-1f3eafed",
        "digest": {
            "length": 1203.0,
            "function_hash": "69038466520686909057896875726299099909"
        },
        "signature_version": "v1",
        "target": {
            "file": "drivers/net/ethernet/google/gve/gve_main.c",
            "function": "gve_xsk_pool_enable"
        },
        "deprecated": false,
        "signature_type": "Function",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@771d66f2bd8c4dba1286a9163ab982cecd825718"
    },
    {
        "id": "CVE-2024-57933-26f3bb5c",
        "digest": {
            "line_hashes": [
                "134798398563564499506778059740806031013",
                "101987445710176614364360843304513039677",
                "126114425836099718939243162110516131268",
                "16158035358842488649510346537191540115",
                "57676089342431358286105008872104496270",
                "168985530076285576445980687275533447902",
                "320155326842558143955729961666466720053",
                "180147058011508559271486761682176790785",
                "43947138789876393804827645692795618440",
                "188147286794665962100487750267300402138",
                "324664074473379180344795790853450256915",
                "211958230507509111001345489069488801856",
                "113975472386557242209182029290837475339",
                "331438433054207541080052338918152703023",
                "37486103425205988622955627621104377474",
                "211532443241160653573666728231387587152",
                "151044116945615532211444439324842850342",
                "251533727352139623406504384336455056500",
                "16992009671767890862799499022512500547",
                "149063382842828706254652227786890203362",
                "312698273731351748382224901908272729775"
            ],
            "threshold": 0.9
        },
        "signature_version": "v1",
        "target": {
            "file": "drivers/net/ethernet/google/gve/gve_main.c"
        },
        "deprecated": false,
        "signature_type": "Line",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@771d66f2bd8c4dba1286a9163ab982cecd825718"
    },
    {
        "id": "CVE-2024-57933-329711be",
        "digest": {
            "length": 1203.0,
            "function_hash": "69038466520686909057896875726299099909"
        },
        "signature_version": "v1",
        "target": {
            "file": "drivers/net/ethernet/google/gve/gve_main.c",
            "function": "gve_xsk_pool_enable"
        },
        "deprecated": false,
        "signature_type": "Function",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@40338d7987d810fcaa95c500b1068a52b08eec9b"
    },
    {
        "id": "CVE-2024-57933-49cbfb75",
        "digest": {
            "length": 476.0,
            "function_hash": "187005767078987600815691330160662588778"
        },
        "signature_version": "v1",
        "target": {
            "file": "drivers/net/ethernet/google/gve/gve_main.c",
            "function": "gve_xsk_wakeup"
        },
        "deprecated": false,
        "signature_type": "Function",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8e8d7037c89437af12725f454e2eaf40e8166c0f"
    },
    {
        "id": "CVE-2024-57933-6ab766ed",
        "digest": {
            "length": 1079.0,
            "function_hash": "276199687508572608144024418977312213709"
        },
        "signature_version": "v1",
        "target": {
            "file": "drivers/net/ethernet/google/gve/gve_main.c",
            "function": "gve_xsk_pool_disable"
        },
        "deprecated": false,
        "signature_type": "Function",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@771d66f2bd8c4dba1286a9163ab982cecd825718"
    },
    {
        "id": "CVE-2024-57933-8f67f5d9",
        "digest": {
            "line_hashes": [
                "134798398563564499506778059740806031013",
                "101987445710176614364360843304513039677",
                "126114425836099718939243162110516131268",
                "16158035358842488649510346537191540115",
                "57676089342431358286105008872104496270",
                "168985530076285576445980687275533447902",
                "320155326842558143955729961666466720053",
                "180147058011508559271486761682176790785",
                "43947138789876393804827645692795618440",
                "188147286794665962100487750267300402138",
                "324664074473379180344795790853450256915",
                "211958230507509111001345489069488801856",
                "113975472386557242209182029290837475339",
                "331438433054207541080052338918152703023",
                "37486103425205988622955627621104377474",
                "211532443241160653573666728231387587152",
                "151044116945615532211444439324842850342",
                "251533727352139623406504384336455056500",
                "16992009671767890862799499022512500547",
                "149063382842828706254652227786890203362",
                "312698273731351748382224901908272729775"
            ],
            "threshold": 0.9
        },
        "signature_version": "v1",
        "target": {
            "file": "drivers/net/ethernet/google/gve/gve_main.c"
        },
        "deprecated": false,
        "signature_type": "Line",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@40338d7987d810fcaa95c500b1068a52b08eec9b"
    },
    {
        "id": "CVE-2024-57933-8fbe8045",
        "digest": {
            "line_hashes": [
                "134798398563564499506778059740806031013",
                "101987445710176614364360843304513039677",
                "126114425836099718939243162110516131268",
                "16158035358842488649510346537191540115",
                "57676089342431358286105008872104496270",
                "168985530076285576445980687275533447902",
                "320155326842558143955729961666466720053",
                "180147058011508559271486761682176790785",
                "43947138789876393804827645692795618440",
                "188147286794665962100487750267300402138",
                "324664074473379180344795790853450256915",
                "211958230507509111001345489069488801856",
                "113975472386557242209182029290837475339",
                "331438433054207541080052338918152703023",
                "37486103425205988622955627621104377474",
                "211532443241160653573666728231387587152",
                "151044116945615532211444439324842850342",
                "251533727352139623406504384336455056500",
                "16992009671767890862799499022512500547",
                "149063382842828706254652227786890203362",
                "312698273731351748382224901908272729775"
            ],
            "threshold": 0.9
        },
        "signature_version": "v1",
        "target": {
            "file": "drivers/net/ethernet/google/gve/gve_main.c"
        },
        "deprecated": false,
        "signature_type": "Line",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8e8d7037c89437af12725f454e2eaf40e8166c0f"
    },
    {
        "id": "CVE-2024-57933-944f0891",
        "digest": {
            "length": 1203.0,
            "function_hash": "69038466520686909057896875726299099909"
        },
        "signature_version": "v1",
        "target": {
            "file": "drivers/net/ethernet/google/gve/gve_main.c",
            "function": "gve_xsk_pool_enable"
        },
        "deprecated": false,
        "signature_type": "Function",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8e8d7037c89437af12725f454e2eaf40e8166c0f"
    },
    {
        "id": "CVE-2024-57933-b08c89a4",
        "digest": {
            "length": 476.0,
            "function_hash": "187005767078987600815691330160662588778"
        },
        "signature_version": "v1",
        "target": {
            "file": "drivers/net/ethernet/google/gve/gve_main.c",
            "function": "gve_xsk_wakeup"
        },
        "deprecated": false,
        "signature_type": "Function",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@40338d7987d810fcaa95c500b1068a52b08eec9b"
    },
    {
        "id": "CVE-2024-57933-c4925f37",
        "digest": {
            "length": 476.0,
            "function_hash": "187005767078987600815691330160662588778"
        },
        "signature_version": "v1",
        "target": {
            "file": "drivers/net/ethernet/google/gve/gve_main.c",
            "function": "gve_xsk_wakeup"
        },
        "deprecated": false,
        "signature_type": "Function",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@771d66f2bd8c4dba1286a9163ab982cecd825718"
    },
    {
        "id": "CVE-2024-57933-fb5b8b8d",
        "digest": {
            "length": 1079.0,
            "function_hash": "276199687508572608144024418977312213709"
        },
        "signature_version": "v1",
        "target": {
            "file": "drivers/net/ethernet/google/gve/gve_main.c",
            "function": "gve_xsk_pool_disable"
        },
        "deprecated": false,
        "signature_type": "Function",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8e8d7037c89437af12725f454e2eaf40e8166c0f"
    }
]

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.4.0
Fixed
6.6.70
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.9