Entreprise d'experts en Sécurité Informatique : Audits et conseils en cybersécurité
Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com


CVE-2024-46799

Description

In the Linux kernel, the following vulnerability has been resolved:net: ethernet: ti: am65-cpsw: Fix NULL dereference on XDP_TXIf number of TX queues are set to 1 we get a NULL pointerdereference during XDP_TX.~# ethtool -L eth0 tx 1~# ./xdp-trafficgen udp -A -a eth0 -t 2Transmitting on eth0 (ifindex 2)[ 241.135257] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000030Fix this by using actual TX queues instead of max TX queueswhen picking the TX channel in am65_cpsw_ndo_xdp_xmit().

POC

Reference

No PoCs from references.

Github

- https://github.com/fkie-cad/nvd-json-data-feeds