CVE-2024-50094
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-50094
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-50094.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-50094
- Downstream
- Related
- Published
- 2024-11-05T17:04:57Z
- Modified
- 2025-10-17T15:09:44.669682Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- sfc: Don't invoke xdp_do_flush() from netpoll.
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
sfc: Don't invoke xdpdoflush() from netpoll.
Yury reported a crash in the sfc driver originated from netpollsendudp(). The netconsole sends a message and then netpoll invokes the driver's NAPI function with a budget of zero. It is dedicated to allow driver to free TX resources, that it may have used while sending the packet.
In the netpoll case the driver invokes xdpdoflush() unconditionally, leading to crash because bpfnetcontext was never assigned.
Invoke xdpdoflush() only if budget is not zero.
- References
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced401cb7dae8130fd34eb84648e02ab4c506df7d5eFixed65d4fc76d75c136744e67754d20feda609e7b793
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced401cb7dae8130fd34eb84648e02ab4c506df7d5eFixed55e802468e1d38dec8e25a2fdb6078d45b647e8c
Affected versions
v6.*
v6.10
v6.10-rc5
v6.10-rc6
v6.10-rc7
v6.11
v6.11-rc1
v6.11-rc2
v6.11-rc3
v6.11-rc4
v6.11-rc5
v6.11-rc6
v6.11-rc7
v6.11.1
v6.11.2
v6.11.3
v6.12-rc1
Database specific
vanir_signatures
[
{
"target": {
"file": "drivers/net/ethernet/sfc/siena/efx_channels.c"
},
"id": "CVE-2024-50094-3bc4d456",
"signature_type": "Line",
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@55e802468e1d38dec8e25a2fdb6078d45b647e8c",
"digest": {
"line_hashes": [
"149226387505950248488405233919470741021",
"59215603443492102125989826622993389920",
"287251499143680995912289289354566752973",
"301733405791094598909586016446796725675"
],
"threshold": 0.9
}
},
{
"target": {
"file": "drivers/net/ethernet/sfc/efx_channels.c"
},
"id": "CVE-2024-50094-4c2be369",
"signature_type": "Line",
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@65d4fc76d75c136744e67754d20feda609e7b793",
"digest": {
"line_hashes": [
"149226387505950248488405233919470741021",
"59215603443492102125989826622993389920",
"287251499143680995912289289354566752973",
"301733405791094598909586016446796725675"
],
"threshold": 0.9
}
},
{
"target": {
"function": "efx_poll",
"file": "drivers/net/ethernet/sfc/efx_channels.c"
},
"id": "CVE-2024-50094-6a5c392c",
"signature_type": "Function",
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@65d4fc76d75c136744e67754d20feda609e7b793",
"digest": {
"function_hash": "33382897854624934380685688511446152206",
"length": 833.0
}
},
{
"target": {
"file": "drivers/net/ethernet/sfc/siena/efx_channels.c"
},
"id": "CVE-2024-50094-71e1f44f",
"signature_type": "Line",
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@65d4fc76d75c136744e67754d20feda609e7b793",
"digest": {
"line_hashes": [
"149226387505950248488405233919470741021",
"59215603443492102125989826622993389920",
"287251499143680995912289289354566752973",
"301733405791094598909586016446796725675"
],
"threshold": 0.9
}
},
{
"target": {
"function": "efx_poll",
"file": "drivers/net/ethernet/sfc/efx_channels.c"
},
"id": "CVE-2024-50094-7f87dede",
"signature_type": "Function",
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@55e802468e1d38dec8e25a2fdb6078d45b647e8c",
"digest": {
"function_hash": "33382897854624934380685688511446152206",
"length": 833.0
}
},
{
"target": {
"file": "drivers/net/ethernet/sfc/efx_channels.c"
},
"id": "CVE-2024-50094-d2c32e52",
"signature_type": "Line",
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@55e802468e1d38dec8e25a2fdb6078d45b647e8c",
"digest": {
"line_hashes": [
"149226387505950248488405233919470741021",
"59215603443492102125989826622993389920",
"287251499143680995912289289354566752973",
"301733405791094598909586016446796725675"
],
"threshold": 0.9
}
},
{
"target": {
"function": "efx_poll",
"file": "drivers/net/ethernet/sfc/siena/efx_channels.c"
},
"id": "CVE-2024-50094-de0f6304",
"signature_type": "Function",
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@55e802468e1d38dec8e25a2fdb6078d45b647e8c",
"digest": {
"function_hash": "33382897854624934380685688511446152206",
"length": 833.0
}
},
{
"target": {
"function": "efx_poll",
"file": "drivers/net/ethernet/sfc/siena/efx_channels.c"
},
"id": "CVE-2024-50094-f8e3b88e",
"signature_type": "Function",
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@65d4fc76d75c136744e67754d20feda609e7b793",
"digest": {
"function_hash": "33382897854624934380685688511446152206",
"length": 833.0
}
}
]