cve/published/2024/CVE-2024-27013.json - pub/scm/linux/security/vulns - Git at Google

 {
    "containers": {
       "cna": {
          "providerMetadata": {
             "orgId": "f4215fc3-5b6b-47ff-a258-f7189bd81038"
          },
          "descriptions": [
             {
                "lang": "en",
                "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ntun: limit printing rate when illegal packet received by tun dev\n\nvhost_worker will call tun call backs to receive packets. If too many\nillegal packets arrives, tun_do_read will keep dumping packet contents.\nWhen console is enabled, it will costs much more cpu time to dump\npacket and soft lockup will be detected.\n\nnet_ratelimit mechanism can be used to limit the dumping rate.\n\nPID: 33036    TASK: ffff949da6f20000  CPU: 23   COMMAND: \"vhost-32980\"\n #0 [fffffe00003fce50] crash_nmi_callback at ffffffff89249253\n #1 [fffffe00003fce58] nmi_handle at ffffffff89225fa3\n #2 [fffffe00003fceb0] default_do_nmi at ffffffff8922642e\n #3 [fffffe00003fced0] do_nmi at ffffffff8922660d\n #4 [fffffe00003fcef0] end_repeat_nmi at ffffffff89c01663\n    [exception RIP: io_serial_in+20]\n    RIP: ffffffff89792594  RSP: ffffa655314979e8  RFLAGS: 00000002\n    RAX: ffffffff89792500  RBX: ffffffff8af428a0  RCX: 0000000000000000\n    RDX: 00000000000003fd  RSI: 0000000000000005  RDI: ffffffff8af428a0\n    RBP: 0000000000002710   R8: 0000000000000004   R9: 000000000000000f\n    R10: 0000000000000000  R11: ffffffff8acbf64f  R12: 0000000000000020\n    R13: ffffffff8acbf698  R14: 0000000000000058  R15: 0000000000000000\n    ORIG_RAX: ffffffffffffffff  CS: 0010  SS: 0018\n #5 [ffffa655314979e8] io_serial_in at ffffffff89792594\n #6 [ffffa655314979e8] wait_for_xmitr at ffffffff89793470\n #7 [ffffa65531497a08] serial8250_console_putchar at ffffffff897934f6\n #8 [ffffa65531497a20] uart_console_write at ffffffff8978b605\n #9 [ffffa65531497a48] serial8250_console_write at ffffffff89796558\n #10 [ffffa65531497ac8] console_unlock at ffffffff89316124\n #11 [ffffa65531497b10] vprintk_emit at ffffffff89317c07\n #12 [ffffa65531497b68] printk at ffffffff89318306\n #13 [ffffa65531497bc8] print_hex_dump at ffffffff89650765\n #14 [ffffa65531497ca8] tun_do_read at ffffffffc0b06c27 [tun]\n #15 [ffffa65531497d38] tun_recvmsg at ffffffffc0b06e34 [tun]\n #16 [ffffa65531497d68] handle_rx at ffffffffc0c5d682 [vhost_net]\n #17 [ffffa65531497ed0] vhost_worker at ffffffffc0c644dc [vhost]\n #18 [ffffa65531497f10] kthread at ffffffff892d2e72\n #19 [ffffa65531497f50] ret_from_fork at ffffffff89c0022f"
             }
          ],
          "affected": [
             {
                "product": "Linux",
                "vendor": "Linux",
                "defaultStatus": "unaffected",
                "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
                "programFiles": [
                   "drivers/net/tun.c"
                ],
                "versions": [
                   {
                      "version": "ef3db4a5954281bc1ea49a4739c88eaea091dc71",
                      "lessThan": "68459b8e3ee554ce71878af9eb69659b9462c588",
                      "status": "affected",
                      "versionType": "git"
                   },
                   {
                      "version": "ef3db4a5954281bc1ea49a4739c88eaea091dc71",
                      "lessThan": "4b0dcae5c4797bf31c63011ed62917210d3fdac3",
                      "status": "affected",
                      "versionType": "git"
                   },
                   {
                      "version": "ef3db4a5954281bc1ea49a4739c88eaea091dc71",
                      "lessThan": "14cdb43dbc827e18ac7d5b30c5b4c676219f1421",
                      "status": "affected",
                      "versionType": "git"
                   },
                   {
                      "version": "ef3db4a5954281bc1ea49a4739c88eaea091dc71",
                      "lessThan": "a50dbeca28acf7051dfa92786b85f704c75db6eb",
                      "status": "affected",
                      "versionType": "git"
                   },
                   {
                      "version": "ef3db4a5954281bc1ea49a4739c88eaea091dc71",
                      "lessThan": "62e27ef18eb4f0d33bbae8e9ef56b99696a74713",
                      "status": "affected",
                      "versionType": "git"
                   },
                   {
                      "version": "ef3db4a5954281bc1ea49a4739c88eaea091dc71",
                      "lessThan": "40f4ced305c6c47487d3cd8da54676e2acc1a6ad",
                      "status": "affected",
                      "versionType": "git"
                   },
                   {
                      "version": "ef3db4a5954281bc1ea49a4739c88eaea091dc71",
                      "lessThan": "52854101180beccdb9dc2077a3bea31b6ad48dfa",
                      "status": "affected",
                      "versionType": "git"
                   },
                   {
                      "version": "ef3db4a5954281bc1ea49a4739c88eaea091dc71",
                      "lessThan": "f8bbc07ac535593139c875ffa19af924b1084540",
                      "status": "affected",
                      "versionType": "git"
                   }
                ]
             },
             {
                "product": "Linux",
                "vendor": "Linux",
                "defaultStatus": "affected",
                "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
                "programFiles": [
                   "drivers/net/tun.c"
                ],
                "versions": [
                   {
                      "version": "2.6.35",
                      "status": "affected"
                   },
                   {
                      "version": "0",
                      "lessThan": "2.6.35",
                      "status": "unaffected",
                      "versionType": "semver"
                   },
                   {
                      "version": "4.19.313",
                      "lessThanOrEqual": "4.19.*",
                      "status": "unaffected",
                      "versionType": "semver"
                   },
                   {
                      "version": "5.4.275",
                      "lessThanOrEqual": "5.4.*",
                      "status": "unaffected",
                      "versionType": "semver"
                   },
                   {
                      "version": "5.10.216",
                      "lessThanOrEqual": "5.10.*",
                      "status": "unaffected",
                      "versionType": "semver"
                   },
                   {
                      "version": "5.15.157",
                      "lessThanOrEqual": "5.15.*",
                      "status": "unaffected",
                      "versionType": "semver"
                   },
                   {
                      "version": "6.1.88",
                      "lessThanOrEqual": "6.1.*",
                      "status": "unaffected",
                      "versionType": "semver"
                   },
                   {
                      "version": "6.6.29",
                      "lessThanOrEqual": "6.6.*",
                      "status": "unaffected",
                      "versionType": "semver"
                   },
                   {
                      "version": "6.8.8",
                      "lessThanOrEqual": "6.8.*",
                      "status": "unaffected",
                      "versionType": "semver"
                   },
                   {
                      "version": "6.9",
                      "lessThanOrEqual": "*",
                      "status": "unaffected",
                      "versionType": "original_commit_for_fix"
                   }
                ]
             }
          ],
          "cpeApplicability": [
             {
                "nodes": [
                   {
                      "operator": "OR",
                      "negate": false,
                      "cpeMatch": [
                         {
                            "vulnerable": true,
                            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                            "versionStartIncluding": "2.6.35",
                            "versionEndExcluding": "4.19.313"
                         },
                         {
                            "vulnerable": true,
                            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                            "versionStartIncluding": "2.6.35",
                            "versionEndExcluding": "5.4.275"
                         },
                         {
                            "vulnerable": true,
                            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                            "versionStartIncluding": "2.6.35",
                            "versionEndExcluding": "5.10.216"
                         },
                         {
                            "vulnerable": true,
                            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                            "versionStartIncluding": "2.6.35",
                            "versionEndExcluding": "5.15.157"
                         },
                         {
                            "vulnerable": true,
                            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                            "versionStartIncluding": "2.6.35",
                            "versionEndExcluding": "6.1.88"
                         },
                         {
                            "vulnerable": true,
                            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                            "versionStartIncluding": "2.6.35",
                            "versionEndExcluding": "6.6.29"
                         },
                         {
                            "vulnerable": true,
                            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                            "versionStartIncluding": "2.6.35",
                            "versionEndExcluding": "6.8.8"
                         },
                         {
                            "vulnerable": true,
                            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                            "versionStartIncluding": "2.6.35",
                            "versionEndExcluding": "6.9"
                         }
                      ]
                   }
                ]
             }
          ],
          "references": [
             {
                "url": "https://git.kernel.org/stable/c/68459b8e3ee554ce71878af9eb69659b9462c588"
             },
             {
                "url": "https://git.kernel.org/stable/c/4b0dcae5c4797bf31c63011ed62917210d3fdac3"
             },
             {
                "url": "https://git.kernel.org/stable/c/14cdb43dbc827e18ac7d5b30c5b4c676219f1421"
             },
             {
                "url": "https://git.kernel.org/stable/c/a50dbeca28acf7051dfa92786b85f704c75db6eb"
             },
             {
                "url": "https://git.kernel.org/stable/c/62e27ef18eb4f0d33bbae8e9ef56b99696a74713"
             },
             {
                "url": "https://git.kernel.org/stable/c/40f4ced305c6c47487d3cd8da54676e2acc1a6ad"
             },
             {
                "url": "https://git.kernel.org/stable/c/52854101180beccdb9dc2077a3bea31b6ad48dfa"
             },
             {
                "url": "https://git.kernel.org/stable/c/f8bbc07ac535593139c875ffa19af924b1084540"
             }
          ],
          "title": "tun: limit printing rate when illegal packet received by tun dev",
          "x_generator": {
             "engine": "bippy-1.2.0"
          }
       }
    },
    "cveMetadata": {
       "assignerOrgId": "f4215fc3-5b6b-47ff-a258-f7189bd81038",
       "cveID": "CVE-2024-27013",
       "requesterUserId": "gregkh@kernel.org",
       "serial": "1",
       "state": "PUBLISHED"
    },
    "dataType": "CVE_RECORD",
    "dataVersion": "5.0"
 }
	{
	"containers": {
	"cna": {
	"providerMetadata": {
	"orgId": "f4215fc3-5b6b-47ff-a258-f7189bd81038"
	},
	"descriptions": [
	{
	"lang": "en",
	"value": "In the Linux kernel, the following vulnerability has been resolved:\n\ntun: limit printing rate when illegal packet received by tun dev\n\nvhost_worker will call tun call backs to receive packets. If too many\nillegal packets arrives, tun_do_read will keep dumping packet contents.\nWhen console is enabled, it will costs much more cpu time to dump\npacket and soft lockup will be detected.\n\nnet_ratelimit mechanism can be used to limit the dumping rate.\n\nPID: 33036 TASK: ffff949da6f20000 CPU: 23 COMMAND: \"vhost-32980\"\n #0 [fffffe00003fce50] crash_nmi_callback at ffffffff89249253\n #1 [fffffe00003fce58] nmi_handle at ffffffff89225fa3\n #2 [fffffe00003fceb0] default_do_nmi at ffffffff8922642e\n #3 [fffffe00003fced0] do_nmi at ffffffff8922660d\n #4 [fffffe00003fcef0] end_repeat_nmi at ffffffff89c01663\n [exception RIP: io_serial_in+20]\n RIP: ffffffff89792594 RSP: ffffa655314979e8 RFLAGS: 00000002\n RAX: ffffffff89792500 RBX: ffffffff8af428a0 RCX: 0000000000000000\n RDX: 00000000000003fd RSI: 0000000000000005 RDI: ffffffff8af428a0\n RBP: 0000000000002710 R8: 0000000000000004 R9: 000000000000000f\n R10: 0000000000000000 R11: ffffffff8acbf64f R12: 0000000000000020\n R13: ffffffff8acbf698 R14: 0000000000000058 R15: 0000000000000000\n ORIG_RAX: ffffffffffffffff CS: 0010 SS: 0018\n #5 [ffffa655314979e8] io_serial_in at ffffffff89792594\n #6 [ffffa655314979e8] wait_for_xmitr at ffffffff89793470\n #7 [ffffa65531497a08] serial8250_console_putchar at ffffffff897934f6\n #8 [ffffa65531497a20] uart_console_write at ffffffff8978b605\n #9 [ffffa65531497a48] serial8250_console_write at ffffffff89796558\n #10 [ffffa65531497ac8] console_unlock at ffffffff89316124\n #11 [ffffa65531497b10] vprintk_emit at ffffffff89317c07\n #12 [ffffa65531497b68] printk at ffffffff89318306\n #13 [ffffa65531497bc8] print_hex_dump at ffffffff89650765\n #14 [ffffa65531497ca8] tun_do_read at ffffffffc0b06c27 [tun]\n #15 [ffffa65531497d38] tun_recvmsg at ffffffffc0b06e34 [tun]\n #16 [ffffa65531497d68] handle_rx at ffffffffc0c5d682 [vhost_net]\n #17 [ffffa65531497ed0] vhost_worker at ffffffffc0c644dc [vhost]\n #18 [ffffa65531497f10] kthread at ffffffff892d2e72\n #19 [ffffa65531497f50] ret_from_fork at ffffffff89c0022f"
	}
	],
	"affected": [
	{
	"product": "Linux",
	"vendor": "Linux",
	"defaultStatus": "unaffected",
	"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
	"programFiles": [
	"drivers/net/tun.c"
	],
	"versions": [
	{
	"version": "ef3db4a5954281bc1ea49a4739c88eaea091dc71",
	"lessThan": "68459b8e3ee554ce71878af9eb69659b9462c588",
	"status": "affected",
	"versionType": "git"
	},
	{
	"version": "ef3db4a5954281bc1ea49a4739c88eaea091dc71",
	"lessThan": "4b0dcae5c4797bf31c63011ed62917210d3fdac3",
	"status": "affected",
	"versionType": "git"
	},
	{
	"version": "ef3db4a5954281bc1ea49a4739c88eaea091dc71",
	"lessThan": "14cdb43dbc827e18ac7d5b30c5b4c676219f1421",
	"status": "affected",
	"versionType": "git"
	},
	{
	"version": "ef3db4a5954281bc1ea49a4739c88eaea091dc71",
	"lessThan": "a50dbeca28acf7051dfa92786b85f704c75db6eb",
	"status": "affected",
	"versionType": "git"
	},
	{
	"version": "ef3db4a5954281bc1ea49a4739c88eaea091dc71",
	"lessThan": "62e27ef18eb4f0d33bbae8e9ef56b99696a74713",
	"status": "affected",
	"versionType": "git"
	},
	{
	"version": "ef3db4a5954281bc1ea49a4739c88eaea091dc71",
	"lessThan": "40f4ced305c6c47487d3cd8da54676e2acc1a6ad",
	"status": "affected",
	"versionType": "git"
	},
	{
	"version": "ef3db4a5954281bc1ea49a4739c88eaea091dc71",
	"lessThan": "52854101180beccdb9dc2077a3bea31b6ad48dfa",
	"status": "affected",
	"versionType": "git"
	},
	{
	"version": "ef3db4a5954281bc1ea49a4739c88eaea091dc71",
	"lessThan": "f8bbc07ac535593139c875ffa19af924b1084540",
	"status": "affected",
	"versionType": "git"
	}
	]
	},
	{
	"product": "Linux",
	"vendor": "Linux",
	"defaultStatus": "affected",
	"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
	"programFiles": [
	"drivers/net/tun.c"
	],
	"versions": [
	{
	"version": "2.6.35",
	"status": "affected"
	},
	{
	"version": "0",
	"lessThan": "2.6.35",
	"status": "unaffected",
	"versionType": "semver"
	},
	{
	"version": "4.19.313",
	"lessThanOrEqual": "4.19.*",
	"status": "unaffected",
	"versionType": "semver"
	},
	{
	"version": "5.4.275",
	"lessThanOrEqual": "5.4.*",
	"status": "unaffected",
	"versionType": "semver"
	},
	{
	"version": "5.10.216",
	"lessThanOrEqual": "5.10.*",
	"status": "unaffected",
	"versionType": "semver"
	},
	{
	"version": "5.15.157",
	"lessThanOrEqual": "5.15.*",
	"status": "unaffected",
	"versionType": "semver"
	},
	{
	"version": "6.1.88",
	"lessThanOrEqual": "6.1.*",
	"status": "unaffected",
	"versionType": "semver"
	},
	{
	"version": "6.6.29",
	"lessThanOrEqual": "6.6.*",
	"status": "unaffected",
	"versionType": "semver"
	},
	{
	"version": "6.8.8",
	"lessThanOrEqual": "6.8.*",
	"status": "unaffected",
	"versionType": "semver"
	},
	{
	"version": "6.9",
	"lessThanOrEqual": "*",
	"status": "unaffected",
	"versionType": "original_commit_for_fix"
	}
	]
	}
	],
	"cpeApplicability": [
	{
	"nodes": [
	{
	"operator": "OR",
	"negate": false,
	"cpeMatch": [
	{
	"vulnerable": true,
	"criteria": "cpe:2.3:o:linux:linux_kernel::::::::",
	"versionStartIncluding": "2.6.35",
	"versionEndExcluding": "4.19.313"
	},
	{
	"vulnerable": true,
	"criteria": "cpe:2.3:o:linux:linux_kernel::::::::",
	"versionStartIncluding": "2.6.35",
	"versionEndExcluding": "5.4.275"
	},
	{
	"vulnerable": true,
	"criteria": "cpe:2.3:o:linux:linux_kernel::::::::",
	"versionStartIncluding": "2.6.35",
	"versionEndExcluding": "5.10.216"
	},
	{
	"vulnerable": true,
	"criteria": "cpe:2.3:o:linux:linux_kernel::::::::",
	"versionStartIncluding": "2.6.35",
	"versionEndExcluding": "5.15.157"
	},
	{
	"vulnerable": true,
	"criteria": "cpe:2.3:o:linux:linux_kernel::::::::",
	"versionStartIncluding": "2.6.35",
	"versionEndExcluding": "6.1.88"
	},
	{
	"vulnerable": true,
	"criteria": "cpe:2.3:o:linux:linux_kernel::::::::",
	"versionStartIncluding": "2.6.35",
	"versionEndExcluding": "6.6.29"
	},
	{
	"vulnerable": true,
	"criteria": "cpe:2.3:o:linux:linux_kernel::::::::",
	"versionStartIncluding": "2.6.35",
	"versionEndExcluding": "6.8.8"
	},
	{
	"vulnerable": true,
	"criteria": "cpe:2.3:o:linux:linux_kernel::::::::",
	"versionStartIncluding": "2.6.35",
	"versionEndExcluding": "6.9"
	}
	]
	}
	]
	}
	],
	"references": [
	{
	"url": "https://git.kernel.org/stable/c/68459b8e3ee554ce71878af9eb69659b9462c588"
	},
	{
	"url": "https://git.kernel.org/stable/c/4b0dcae5c4797bf31c63011ed62917210d3fdac3"
	},
	{
	"url": "https://git.kernel.org/stable/c/14cdb43dbc827e18ac7d5b30c5b4c676219f1421"
	},
	{
	"url": "https://git.kernel.org/stable/c/a50dbeca28acf7051dfa92786b85f704c75db6eb"
	},
	{
	"url": "https://git.kernel.org/stable/c/62e27ef18eb4f0d33bbae8e9ef56b99696a74713"
	},
	{
	"url": "https://git.kernel.org/stable/c/40f4ced305c6c47487d3cd8da54676e2acc1a6ad"
	},
	{
	"url": "https://git.kernel.org/stable/c/52854101180beccdb9dc2077a3bea31b6ad48dfa"
	},
	{
	"url": "https://git.kernel.org/stable/c/f8bbc07ac535593139c875ffa19af924b1084540"
	}
	],
	"title": "tun: limit printing rate when illegal packet received by tun dev",
	"x_generator": {
	"engine": "bippy-1.2.0"
	}
	}
	},
	"cveMetadata": {
	"assignerOrgId": "f4215fc3-5b6b-47ff-a258-f7189bd81038",
	"cveID": "CVE-2024-27013",
	"requesterUserId": "gregkh@kernel.org",
	"serial": "1",
	"state": "PUBLISHED"
	},
	"dataType": "CVE_RECORD",
	"dataVersion": "5.0"
	}