Kernel Vulnerability in Linux Affects OcteonTX2 Products
CVE-2024-56727

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 29 December 2024

Summary

A vulnerability exists in the Linux kernel impacting the OcteonTX2 platform, specifically related to error handling in the otx2_flows.c module. The issue arises from the otx2_mbox_get_rsp function, where failure to handle error pointers correctly could lead to undefined behavior and potential system stability issues. This vulnerability has been addressed by adding appropriate error pointer checks post-calling otx2_mbox_get_rsp(). Users of affected products are advised to ensure their systems are updated to mitigate any possible impact.

Affected Version(s)

Linux f0a1913f8a6f947531c3042f9d6524946e661b57 < 8c9f8b35dc3d4ad8053a72bc0c5a7843591f6b75

Linux f0a1913f8a6f947531c3042f9d6524946e661b57

References

https://git.kernel.org/stable/c/8c9f8b35dc3d4ad8053a72bc0...

https://git.kernel.org/stable/c/c4eae7bac880edd88aaed6a8e...

https://git.kernel.org/stable/c/a479b3d7586e6f77f8337bbca...

Timeline

Vulnerability published
Dec 29, 2024
Vulnerability Reserved
Dec 27, 2024

Collectors

NVD DatabaseMitre Database