CVE-2024-53138
Published: Dec 4, 2024
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: kTLS, Fix incorrect page refcounting The kTLS tx handling code is using a mix of get_page() and page_ref_inc() APIs to increment the page reference. But on the release path (mlx5e_ktls_tx_handle_resync_dump_comp()), only put_page() is used. This is an issue when using pages from large folios: the get_page() references are stored on the folio page while the page_ref_inc() references are stored directly in the given page. On release the folio page will be dereferenced too many times. This was found while doing kTLS testing with sendfile() + ZC when the served file was read from NFS on a kernel with NFS large folios support (commit 49b29a573da8 ("nfs: add support for large folios")).
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 84d1bb2b139e0184b1754aa1b5776186b475fce8 - < a0ddb20a748b122ea86003485f7992fa5e84cc95affected 84d1bb2b139e0184b1754aa1b5776186b475fce8 - < ffad2ac8c859c1c1a981fe9c4f7ff925db684a43affected 84d1bb2b139e0184b1754aa1b5776186b475fce8 - < c7b97f9e794d8e2bbaa50e1d6c230196fd214b5eaffected 84d1bb2b139e0184b1754aa1b5776186b475fce8 - < 69fbd07f17b0fdaf8970bc705f5bf115c297839daffected 84d1bb2b139e0184b1754aa1b5776186b475fce8 - < 93a14620b97c911489a5b008782f3d9b0c4aeff4+2 more versions |
Linux | Linux | affected 5.4unaffected 0 - < 5.4unaffected 5.4.287 - <= 5.4.*unaffected 5.10.231 - <= 5.10.*unaffected 5.15.174 - <= 5.15.*+4 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now