CVE-2024-35834

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2024-35834
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-35834.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-35834
Downstream
Related
Published
2024-05-17T14:02:19Z
Modified
2025-10-15T10:37:16.121761Z
Summary
xsk: recycle buffer in case Rx queue was full
Details

In the Linux kernel, the following vulnerability has been resolved:

xsk: recycle buffer in case Rx queue was full

Add missing xskbufffree() call when _xskrcv_zc() failed to produce descriptor to XSK Rx queue.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
24ea50127ecf0efe819c1f6230add27abc6ca9d9
Fixed
cce713664548284daf977739e7ff1cd59e84189c
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
24ea50127ecf0efe819c1f6230add27abc6ca9d9
Fixed
7b4d93d31aade99210d41cd9d4cbd2957c98bc8c
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
24ea50127ecf0efe819c1f6230add27abc6ca9d9
Fixed
269009893146c495f41e9572dd9319e787c2eba9

Affected versions

v6.*

v6.5
v6.5-rc2
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.14
v6.6.2
v6.6.3
v6.6.4
v6.6.5
v6.6.6
v6.6.7
v6.6.8
v6.6.9
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.7.1
v6.7.2

Database specific 

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 666.0,
                "function_hash": "275783133867535565364972375535025344857"
            },
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@cce713664548284daf977739e7ff1cd59e84189c",
            "signature_type": "Function",
            "target": {
                "function": "xsk_rcv_zc",
                "file": "net/xdp/xsk.c"
            },
            "deprecated": false,
            "signature_version": "v1",
            "id": "CVE-2024-35834-af49d0f8"
        },
        {
            "digest": {
                "line_hashes": [
                    "33007914209504371287568296852657820078",
                    "132703488870578404659988340413026725416",
                    "151274773474152648879522681382967229641",
                    "48769988621467192387630209739034801535",
                    "46749270585621605736294537413527140830",
                    "162300315408669103726784406765219856170",
                    "37474818296561771934807928004171050291",
                    "74135988843589787401160206791493176442",
                    "142304161546523746138294024307554611775",
                    "201514986748484256265743483082697141122",
                    "191470593851672364273264376911613874509",
                    "84139036591467259497009135436388623441"
                ],
                "threshold": 0.9
            },
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@cce713664548284daf977739e7ff1cd59e84189c",
            "signature_type": "Line",
            "target": {
                "file": "net/xdp/xsk.c"
            },
            "deprecated": false,
            "signature_version": "v1",
            "id": "CVE-2024-35834-df31fb03"
        }
    ]
}

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.6.0
Fixed
6.6.15
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.7.3