CVE-2024-56660

Published: Dec 27, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: DR, prevent potential error pointer dereference The dr_domain_add_vport_cap() function generally returns NULL on error but sometimes we want it to return ERR_PTR(-EBUSY) so the caller can retry. The problem here is that "ret" can be either -EBUSY or -ENOMEM and if it's and -ENOMEM then the error pointer is propogated back and eventually dereferenced in dr_ste_v0_build_src_gvmi_qpn_tag().

Vendor	Product	Versions
Linux	Linux	affected `11a45def2e197532c46aa908dedd52bc1ee378a2 - < 61f720e801443d4e2a3c0261eda4ad8431458dca` affected `11a45def2e197532c46aa908dedd52bc1ee378a2 - < 325cf73a1b449fea3158ab99d03a7a717aad1618` affected `11a45def2e197532c46aa908dedd52bc1ee378a2 - < a59c61a1869ceefc65ef02886f91e8cd0062211f` affected `11a45def2e197532c46aa908dedd52bc1ee378a2 - < 11776cff0b563c8b8a4fa76cab620bfb633a8cb8`
Linux	Linux	affected `5.16` unaffected `0 - < 5.16` unaffected `6.1.121 - <= 6.1.` unaffected `6.6.67 - <= 6.6.` unaffected `6.12.6 - <= 6.12.*` +1 more versions

References

https://git.kernel.org/stable/c/61f720e801443d4e2a3c0261eda4ad8431458dca

https://git.kernel.org/stable/c/325cf73a1b449fea3158ab99d03a7a717aad1618

https://git.kernel.org/stable/c/a59c61a1869ceefc65ef02886f91e8cd0062211f

https://git.kernel.org/stable/c/11776cff0b563c8b8a4fa76cab620bfb633a8cb8

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-56660

Description

Affected Products

References