Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog Latest Updates Security News
Sign In Sign Up

CVE-2024-40992

UNKNOWN
Published 2024-07-12T12:37:35.800Z
Actions:
No CVSS data available

Description

In the Linux kernel, the following vulnerability has been resolved:

RDMA/rxe: Fix responder length checking for UD request packets

According to the IBA specification:
If a UD request packet is detected with an invalid length, the request
shall be an invalid request and it shall be silently dropped by
the responder. The responder then waits for a new request packet.

commit 689c5421bfe0 ("RDMA/rxe: Fix incorrect responder length checking")
defers responder length check for UD QPs in function `copy_data`.
But it introduces a regression issue for UD QPs.

When the packet size is too large to fit in the receive buffer.
`copy_data` will return error code -EINVAL. Then `send_data_in`
will return RESPST_ERR_MALFORMED_WQE. UD QP will transfer into
ERROR state.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Linux

Linux

Affected Versions:

689c5421bfe0eac65526bd97a466b9590a6aad3c 689c5421bfe0eac65526bd97a466b9590a6aad3c 689c5421bfe0eac65526bd97a466b9590a6aad3c
Linux

Linux

Affected Versions:

6.2 0 6.6.36 6.9.7 6.10

References

https://git.kernel.org/stable/c/163868ec1f6c610d16da9e458fe1dd7d5de97341
https://git.kernel.org/stable/c/943c94f41dfe36536dc9aaa12c9efdf548ceb996
https://git.kernel.org/stable/c/f67ac0061c7614c1548963d3ef1ee1606efd8636
Published: 2024-07-12T12:37:35.800Z
Last Modified: 2025-05-04T09:19:32.485Z
Copied to clipboard!