CVE-2024-26803

Source
https://nvd.nist.gov/vuln/detail/CVE-2024-26803
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-26803.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-26803
Downstream
Published
2024-04-04T08:20:30Z
Modified
2025-10-15T08:47:24.073543Z
Summary
net: veth: clear GRO when clearing XDP even when down
Details

In the Linux kernel, the following vulnerability has been resolved:

net: veth: clear GRO when clearing XDP even when down

veth sets NETIFFGRO automatically when XDP is enabled, because both features use the same NAPI machinery.

The logic to clear NETIFFGRO sits in vethdisablexdp() which is called both on ndostop and when XDP is turned off. To avoid the flag from being cleared when the device is brought down, the clearing is skipped when IFFUP is not set. Bringing the device down should indeed not modify its features.

Unfortunately, this means that clearing is also skipped when XDP is disabled while the device is down. And there's nothing on the open path to bring the device features back into sync. IOW if user enables XDP, disables it and then brings the device up we'll end up with a stray GRO flag set but no NAPI instances.

We don't depend on the GRO flag on the datapath, so the datapath won't crash. We will crash (or hang), however, next time features are sync'ed (either by user via ethtool or peer changing its config). The GRO flag will go away, and veth will try to disable the NAPIs. But the open path never created them since XDP was off, the GRO flag was a stray. If NAPI was initialized before we'll hang in napi_disable(). If it never was we'll crash trying to stop uninitialized hrtimer.

Move the GRO flag updates to the XDP enable / disable paths, instead of mixing them with the ndoopen / ndoclose paths.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
d3256efd8e8b234a6251e4d4580bd2c3c31fdc4c
Fixed
f011c103e654d83dc85f057a7d1bd0960d02831c
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
d3256efd8e8b234a6251e4d4580bd2c3c31fdc4c
Fixed
7985d73961bbb4e726c1be7b9cd26becc7be8325
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
d3256efd8e8b234a6251e4d4580bd2c3c31fdc4c
Fixed
16edf51f33f52dff70ed455bc40a6cc443c04664
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
d3256efd8e8b234a6251e4d4580bd2c3c31fdc4c
Fixed
8f7a3894e58e6f5d5815533cfde60e3838947941
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
d3256efd8e8b234a6251e4d4580bd2c3c31fdc4c
Fixed
fe9f801355f0b47668419f30f1fac1cf4539e736

Affected versions

v5.*

v5.12
v5.12-rc7
v5.12-rc8
v5.13
v5.13-rc1
v5.13-rc2
v5.13-rc3
v5.13-rc4
v5.13-rc5
v5.13-rc6
v5.13-rc7
v5.14
v5.14-rc1
v5.14-rc2
v5.14-rc3
v5.14-rc4
v5.14-rc5
v5.14-rc6
v5.14-rc7
v5.15
v5.15-rc1
v5.15-rc2
v5.15-rc3
v5.15-rc4
v5.15-rc5
v5.15-rc6
v5.15-rc7
v5.15.1
v5.15.10
v5.15.100
v5.15.101
v5.15.102
v5.15.103
v5.15.104
v5.15.105
v5.15.106
v5.15.107
v5.15.108
v5.15.109
v5.15.11
v5.15.110
v5.15.111
v5.15.112
v5.15.113
v5.15.114
v5.15.115
v5.15.116
v5.15.117
v5.15.118
v5.15.119
v5.15.12
v5.15.120
v5.15.121
v5.15.122
v5.15.123
v5.15.124
v5.15.125
v5.15.126
v5.15.127
v5.15.128
v5.15.129
v5.15.13
v5.15.130
v5.15.131
v5.15.132
v5.15.133
v5.15.134
v5.15.135
v5.15.136
v5.15.137
v5.15.138
v5.15.139
v5.15.14
v5.15.140
v5.15.141
v5.15.142
v5.15.143
v5.15.144
v5.15.145
v5.15.146
v5.15.147
v5.15.148
v5.15.149
v5.15.15
v5.15.150
v5.15.16
v5.15.17
v5.15.18
v5.15.19
v5.15.2
v5.15.20
v5.15.21
v5.15.22
v5.15.23
v5.15.24
v5.15.25
v5.15.26
v5.15.27
v5.15.28
v5.15.29
v5.15.3
v5.15.30
v5.15.31
v5.15.32
v5.15.33
v5.15.34
v5.15.35
v5.15.36
v5.15.37
v5.15.38
v5.15.39
v5.15.4
v5.15.40
v5.15.41
v5.15.42
v5.15.43
v5.15.44
v5.15.45
v5.15.46
v5.15.47
v5.15.48
v5.15.49
v5.15.5
v5.15.50
v5.15.51
v5.15.52
v5.15.53
v5.15.54
v5.15.55
v5.15.56
v5.15.57
v5.15.58
v5.15.59
v5.15.6
v5.15.60
v5.15.61
v5.15.62
v5.15.63
v5.15.64
v5.15.65
v5.15.66
v5.15.67
v5.15.68
v5.15.69
v5.15.7
v5.15.70
v5.15.71
v5.15.72
v5.15.73
v5.15.74
v5.15.75
v5.15.76
v5.15.77
v5.15.78
v5.15.79
v5.15.8
v5.15.80
v5.15.81
v5.15.82
v5.15.83
v5.15.84
v5.15.85
v5.15.86
v5.15.87
v5.15.88
v5.15.89
v5.15.9
v5.15.90
v5.15.91
v5.15.92
v5.15.93
v5.15.94
v5.15.95
v5.15.96
v5.15.97
v5.15.98
v5.15.99
v5.16
v5.16-rc1
v5.16-rc2
v5.16-rc3
v5.16-rc4
v5.16-rc5
v5.16-rc6
v5.16-rc7
v5.16-rc8
v5.17
v5.17-rc1
v5.17-rc2
v5.17-rc3
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.18
v5.18-rc1
v5.18-rc2
v5.18-rc3
v5.18-rc4
v5.18-rc5
v5.18-rc6
v5.18-rc7
v5.19
v5.19-rc1
v5.19-rc2
v5.19-rc3
v5.19-rc4
v5.19-rc5
v5.19-rc6
v5.19-rc7
v5.19-rc8

v6.*

v6.0
v6.0-rc1
v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.1
v6.1-rc1
v6.1-rc2
v6.1-rc3
v6.1-rc4
v6.1-rc5
v6.1-rc6
v6.1-rc7
v6.1-rc8
v6.1.1
v6.1.10
v6.1.11
v6.1.12
v6.1.13
v6.1.14
v6.1.15
v6.1.16
v6.1.17
v6.1.18
v6.1.19
v6.1.2
v6.1.20
v6.1.21
v6.1.22
v6.1.23
v6.1.24
v6.1.25
v6.1.26
v6.1.27
v6.1.28
v6.1.29
v6.1.3
v6.1.30
v6.1.31
v6.1.32
v6.1.33
v6.1.34
v6.1.35
v6.1.36
v6.1.37
v6.1.38
v6.1.39
v6.1.4
v6.1.40
v6.1.41
v6.1.42
v6.1.43
v6.1.44
v6.1.45
v6.1.46
v6.1.47
v6.1.48
v6.1.49
v6.1.5
v6.1.50
v6.1.51
v6.1.52
v6.1.53
v6.1.54
v6.1.55
v6.1.56
v6.1.57
v6.1.58
v6.1.59
v6.1.6
v6.1.60
v6.1.61
v6.1.62
v6.1.63
v6.1.64
v6.1.65
v6.1.66
v6.1.67
v6.1.68
v6.1.69
v6.1.7
v6.1.70
v6.1.71
v6.1.72
v6.1.73
v6.1.74
v6.1.75
v6.1.76
v6.1.77
v6.1.78
v6.1.79
v6.1.8
v6.1.80
v6.1.9
v6.2
v6.2-rc1
v6.2-rc2
v6.2-rc3
v6.2-rc4
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.3
v6.3-rc1
v6.3-rc2
v6.3-rc3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.5
v6.5-rc1
v6.5-rc2
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.14
v6.6.15
v6.6.16
v6.6.17
v6.6.18
v6.6.19
v6.6.2
v6.6.20
v6.6.3
v6.6.4
v6.6.5
v6.6.6
v6.6.7
v6.6.8
v6.6.9
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.7.1
v6.7.2
v6.7.3
v6.7.4
v6.7.5
v6.7.6
v6.7.7
v6.7.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5

Database specific

{
    "vanir_signatures": [
        {
            "deprecated": false,
            "signature_type": "Function",
            "target": {
                "file": "drivers/net/veth.c",
                "function": "veth_enable_xdp"
            },
            "id": "CVE-2024-26803-004d8b68",
            "digest": {
                "length": 739.0,
                "function_hash": "278267699030901204360273416657664988511"
            },
            "signature_version": "v1",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@16edf51f33f52dff70ed455bc40a6cc443c04664"
        },
        {
            "deprecated": false,
            "signature_type": "Function",
            "target": {
                "file": "drivers/net/veth.c",
                "function": "veth_enable_xdp"
            },
            "id": "CVE-2024-26803-12a692ab",
            "digest": {
                "length": 739.0,
                "function_hash": "278267699030901204360273416657664988511"
            },
            "signature_version": "v1",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@fe9f801355f0b47668419f30f1fac1cf4539e736"
        },
        {
            "deprecated": false,
            "signature_type": "Function",
            "target": {
                "file": "drivers/net/veth.c",
                "function": "veth_disable_xdp"
            },
            "id": "CVE-2024-26803-1532b608",
            "digest": {
                "length": 453.0,
                "function_hash": "213517101354622100302065379665064387427"
            },
            "signature_version": "v1",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7985d73961bbb4e726c1be7b9cd26becc7be8325"
        },
        {
            "deprecated": false,
            "signature_type": "Function",
            "target": {
                "file": "drivers/net/veth.c",
                "function": "veth_xdp_set"
            },
            "id": "CVE-2024-26803-1adf937f",
            "digest": {
                "length": 1424.0,
                "function_hash": "87767558958580101862792064065156645355"
            },
            "signature_version": "v1",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8f7a3894e58e6f5d5815533cfde60e3838947941"
        },
        {
            "deprecated": false,
            "signature_type": "Function",
            "target": {
                "file": "drivers/net/veth.c",
                "function": "veth_xdp_set"
            },
            "id": "CVE-2024-26803-1f5bacc1",
            "digest": {
                "length": 1424.0,
                "function_hash": "87767558958580101862792064065156645355"
            },
            "signature_version": "v1",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@fe9f801355f0b47668419f30f1fac1cf4539e736"
        },
        {
            "deprecated": false,
            "signature_type": "Function",
            "target": {
                "file": "drivers/net/veth.c",
                "function": "veth_xdp_set"
            },
            "id": "CVE-2024-26803-4dade8e9",
            "digest": {
                "length": 1291.0,
                "function_hash": "224809860395258597066987742431458591380"
            },
            "signature_version": "v1",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f011c103e654d83dc85f057a7d1bd0960d02831c"
        },
        {
            "deprecated": false,
            "signature_type": "Function",
            "target": {
                "file": "drivers/net/veth.c",
                "function": "veth_disable_xdp"
            },
            "id": "CVE-2024-26803-4ec6e86e",
            "digest": {
                "length": 453.0,
                "function_hash": "213517101354622100302065379665064387427"
            },
            "signature_version": "v1",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f011c103e654d83dc85f057a7d1bd0960d02831c"
        },
        {
            "deprecated": false,
            "signature_type": "Function",
            "target": {
                "file": "drivers/net/veth.c",
                "function": "veth_enable_xdp"
            },
            "id": "CVE-2024-26803-50233cb9",
            "digest": {
                "length": 739.0,
                "function_hash": "278267699030901204360273416657664988511"
            },
            "signature_version": "v1",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7985d73961bbb4e726c1be7b9cd26becc7be8325"
        },
        {
            "deprecated": false,
            "signature_type": "Line",
            "target": {
                "file": "drivers/net/veth.c"
            },
            "id": "CVE-2024-26803-5f4c10ca",
            "digest": {
                "line_hashes": [
                    "51600521298343918692076812511963295247",
                    "228927025547975638735029491396071494088",
                    "188251477361409911622229848895383964764",
                    "33452757896745488551179731991401472917",
                    "205777859805371827651574283584077801281",
                    "155193743157180343259231763003304890385",
                    "243908417462048862604911173789816653457",
                    "36686103015714214723838480004605014622",
                    "20848688118658051035010770106989672937",
                    "110801145821806668207820538878277560258",
                    "163110444997990614731861559455110605926",
                    "132196368406772409981002340256950680850",
                    "22978356902576825124258048314280784142",
                    "243414821059066217318054239778306753862",
                    "153915271038379034284603560285869484189",
                    "80194275435019102031408448711991564417",
                    "140576295379162485109042286239197101685",
                    "188857975190572885728574168155141540884",
                    "114829558794022398098847952273374068989",
                    "123066228907334175661141875057757568237",
                    "202795856178504132488371500305852226935",
                    "127080162348608263197356407646751819311",
                    "197095297622269075945891798834460169221",
                    "154813996759324975009894625930509795260"
                ],
                "threshold": 0.9
            },
            "signature_version": "v1",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@fe9f801355f0b47668419f30f1fac1cf4539e736"
        },
        {
            "deprecated": false,
            "signature_type": "Line",
            "target": {
                "file": "drivers/net/veth.c"
            },
            "id": "CVE-2024-26803-682dda38",
            "digest": {
                "line_hashes": [
                    "51600521298343918692076812511963295247",
                    "228927025547975638735029491396071494088",
                    "188251477361409911622229848895383964764",
                    "33452757896745488551179731991401472917",
                    "205777859805371827651574283584077801281",
                    "155193743157180343259231763003304890385",
                    "243908417462048862604911173789816653457",
                    "36686103015714214723838480004605014622",
                    "20848688118658051035010770106989672937",
                    "110801145821806668207820538878277560258",
                    "163110444997990614731861559455110605926",
                    "132196368406772409981002340256950680850",
                    "22978356902576825124258048314280784142",
                    "243414821059066217318054239778306753862",
                    "153915271038379034284603560285869484189",
                    "80194275435019102031408448711991564417",
                    "140576295379162485109042286239197101685",
                    "188857975190572885728574168155141540884",
                    "114829558794022398098847952273374068989",
                    "123066228907334175661141875057757568237",
                    "202795856178504132488371500305852226935",
                    "127080162348608263197356407646751819311",
                    "197095297622269075945891798834460169221",
                    "154813996759324975009894625930509795260"
                ],
                "threshold": 0.9
            },
            "signature_version": "v1",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@16edf51f33f52dff70ed455bc40a6cc443c04664"
        },
        {
            "deprecated": false,
            "signature_type": "Line",
            "target": {
                "file": "drivers/net/veth.c"
            },
            "id": "CVE-2024-26803-79ba7a73",
            "digest": {
                "line_hashes": [
                    "51600521298343918692076812511963295247",
                    "228927025547975638735029491396071494088",
                    "188251477361409911622229848895383964764",
                    "33452757896745488551179731991401472917",
                    "205777859805371827651574283584077801281",
                    "155193743157180343259231763003304890385",
                    "243908417462048862604911173789816653457",
                    "36686103015714214723838480004605014622",
                    "20848688118658051035010770106989672937",
                    "110801145821806668207820538878277560258",
                    "163110444997990614731861559455110605926",
                    "132196368406772409981002340256950680850",
                    "22978356902576825124258048314280784142",
                    "243414821059066217318054239778306753862",
                    "153915271038379034284603560285869484189",
                    "80194275435019102031408448711991564417",
                    "140576295379162485109042286239197101685",
                    "188857975190572885728574168155141540884",
                    "114829558794022398098847952273374068989",
                    "123066228907334175661141875057757568237",
                    "202795856178504132488371500305852226935",
                    "319297122639220144204126051273652870784",
                    "197095297622269075945891798834460169221",
                    "154813996759324975009894625930509795260"
                ],
                "threshold": 0.9
            },
            "signature_version": "v1",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7985d73961bbb4e726c1be7b9cd26becc7be8325"
        },
        {
            "deprecated": false,
            "signature_type": "Function",
            "target": {
                "file": "drivers/net/veth.c",
                "function": "veth_disable_xdp"
            },
            "id": "CVE-2024-26803-9ab62771",
            "digest": {
                "length": 453.0,
                "function_hash": "213517101354622100302065379665064387427"
            },
            "signature_version": "v1",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@fe9f801355f0b47668419f30f1fac1cf4539e736"
        },
        {
            "deprecated": false,
            "signature_type": "Function",
            "target": {
                "file": "drivers/net/veth.c",
                "function": "veth_disable_xdp"
            },
            "id": "CVE-2024-26803-afca18bd",
            "digest": {
                "length": 453.0,
                "function_hash": "213517101354622100302065379665064387427"
            },
            "signature_version": "v1",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@16edf51f33f52dff70ed455bc40a6cc443c04664"
        },
        {
            "deprecated": false,
            "signature_type": "Line",
            "target": {
                "file": "drivers/net/veth.c"
            },
            "id": "CVE-2024-26803-b01c6271",
            "digest": {
                "line_hashes": [
                    "51600521298343918692076812511963295247",
                    "228927025547975638735029491396071494088",
                    "188251477361409911622229848895383964764",
                    "33452757896745488551179731991401472917",
                    "205777859805371827651574283584077801281",
                    "155193743157180343259231763003304890385",
                    "243908417462048862604911173789816653457",
                    "36686103015714214723838480004605014622",
                    "20848688118658051035010770106989672937",
                    "110801145821806668207820538878277560258",
                    "163110444997990614731861559455110605926",
                    "132196368406772409981002340256950680850",
                    "22978356902576825124258048314280784142",
                    "243414821059066217318054239778306753862",
                    "153915271038379034284603560285869484189",
                    "80194275435019102031408448711991564417",
                    "140576295379162485109042286239197101685",
                    "188857975190572885728574168155141540884",
                    "114829558794022398098847952273374068989",
                    "123066228907334175661141875057757568237",
                    "202795856178504132488371500305852226935",
                    "319297122639220144204126051273652870784",
                    "197095297622269075945891798834460169221",
                    "154813996759324975009894625930509795260"
                ],
                "threshold": 0.9
            },
            "signature_version": "v1",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f011c103e654d83dc85f057a7d1bd0960d02831c"
        },
        {
            "deprecated": false,
            "signature_type": "Function",
            "target": {
                "file": "drivers/net/veth.c",
                "function": "veth_enable_xdp"
            },
            "id": "CVE-2024-26803-bfa99e24",
            "digest": {
                "length": 739.0,
                "function_hash": "278267699030901204360273416657664988511"
            },
            "signature_version": "v1",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8f7a3894e58e6f5d5815533cfde60e3838947941"
        },
        {
            "deprecated": false,
            "signature_type": "Function",
            "target": {
                "file": "drivers/net/veth.c",
                "function": "veth_enable_xdp"
            },
            "id": "CVE-2024-26803-c0ed85cf",
            "digest": {
                "length": 739.0,
                "function_hash": "278267699030901204360273416657664988511"
            },
            "signature_version": "v1",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f011c103e654d83dc85f057a7d1bd0960d02831c"
        },
        {
            "deprecated": false,
            "signature_type": "Function",
            "target": {
                "file": "drivers/net/veth.c",
                "function": "veth_xdp_set"
            },
            "id": "CVE-2024-26803-c38b8302",
            "digest": {
                "length": 1344.0,
                "function_hash": "286025677818980656058542677129371759962"
            },
            "signature_version": "v1",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7985d73961bbb4e726c1be7b9cd26becc7be8325"
        },
        {
            "deprecated": false,
            "signature_type": "Line",
            "target": {
                "file": "drivers/net/veth.c"
            },
            "id": "CVE-2024-26803-dd42bb66",
            "digest": {
                "line_hashes": [
                    "51600521298343918692076812511963295247",
                    "228927025547975638735029491396071494088",
                    "188251477361409911622229848895383964764",
                    "33452757896745488551179731991401472917",
                    "205777859805371827651574283584077801281",
                    "155193743157180343259231763003304890385",
                    "243908417462048862604911173789816653457",
                    "36686103015714214723838480004605014622",
                    "20848688118658051035010770106989672937",
                    "110801145821806668207820538878277560258",
                    "163110444997990614731861559455110605926",
                    "132196368406772409981002340256950680850",
                    "22978356902576825124258048314280784142",
                    "243414821059066217318054239778306753862",
                    "153915271038379034284603560285869484189",
                    "80194275435019102031408448711991564417",
                    "140576295379162485109042286239197101685",
                    "188857975190572885728574168155141540884",
                    "114829558794022398098847952273374068989",
                    "123066228907334175661141875057757568237",
                    "202795856178504132488371500305852226935",
                    "127080162348608263197356407646751819311",
                    "197095297622269075945891798834460169221",
                    "154813996759324975009894625930509795260"
                ],
                "threshold": 0.9
            },
            "signature_version": "v1",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8f7a3894e58e6f5d5815533cfde60e3838947941"
        },
        {
            "deprecated": false,
            "signature_type": "Function",
            "target": {
                "file": "drivers/net/veth.c",
                "function": "veth_disable_xdp"
            },
            "id": "CVE-2024-26803-e4f39404",
            "digest": {
                "length": 453.0,
                "function_hash": "213517101354622100302065379665064387427"
            },
            "signature_version": "v1",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8f7a3894e58e6f5d5815533cfde60e3838947941"
        },
        {
            "deprecated": false,
            "signature_type": "Function",
            "target": {
                "file": "drivers/net/veth.c",
                "function": "veth_xdp_set"
            },
            "id": "CVE-2024-26803-e59c5c26",
            "digest": {
                "length": 1424.0,
                "function_hash": "87767558958580101862792064065156645355"
            },
            "signature_version": "v1",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@16edf51f33f52dff70ed455bc40a6cc443c04664"
        }
    ]
}

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.13.0
Fixed
5.15.151
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.81
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.21
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.7.9