CVE-2024-41081
Published: Jul 29, 2024
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: ila: block BH in ila_output() As explained in commit 1378817486d6 ("tipc: block BH before using dst_cache"), net/core/dst_cache.c helpers need to be called with BH disabled. ila_output() is called from lwtunnel_output() possibly from process context, and under rcu_read_lock(). We might be interrupted by a softirq, re-enter ila_output() and corrupt dst_cache data structures. Fix the race by using local_bh_disable().
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 79ff2fc31e0f6a52eeb67fb89fba87e822b9b7b5 - < 7435bd2f84a25aba607030237261b3795ba782daaffected 79ff2fc31e0f6a52eeb67fb89fba87e822b9b7b5 - < 96103371091c6476eb07f4c66624bdd1b42f758aaffected 79ff2fc31e0f6a52eeb67fb89fba87e822b9b7b5 - < a0cafb7b0b94d18e4813ee4b712a056f280e7b5aaffected 79ff2fc31e0f6a52eeb67fb89fba87e822b9b7b5 - < feac2391e26b086f73be30e9b1ab215eada8d830affected 79ff2fc31e0f6a52eeb67fb89fba87e822b9b7b5 - < b4eb25a3d70df925a9fa4e82d17a958a0a228f5f+3 more versions |
Linux | Linux | affected 4.10unaffected 0 - < 4.10unaffected 4.19.319 - <= 4.19.*unaffected 5.4.281 - <= 5.4.*unaffected 5.10.223 - <= 5.10.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now