CVE-2024-40983: tipc: force a dst refcount before doing decryption

Published Jul 12, 2024
·
Updated

In the Linux kernel, the following vulnerability has been resolved:

tipc: force a dst refcount before doing decryption

As it says in commit 3bc07321ccc2 ("xfrm: Force a dst refcount before entering the xfrm type handlers"):

"Crypto requests might return asynchronous. In this case we leave the rcu protected region, so force a refcount on the skb's destination entry before we enter the xfrm type input/output handlers."

On TIPC decryption path it has the same problem, and skbdstforce() should be called before doing decryption to avoid a possible crash.

Shuang reported this issue when this warning is triggered:

[] WARNING: include/net/dst.h:337 tipcskrcv+0x1055/0x1ea0 [tipc] [] Kdump: loaded Tainted: G W --------- - - 4.18.0-496.el8.x8664+debug [] Workqueue: crypto cryptdqueueworker [] RIP: 0010:tipcskrcv+0x1055/0x1ea0 [tipc] [] Call Trace: [] tipcskmcastrcv+0x548/0xea0 [tipc] [] tipcrcv+0xcf5/0x1060 [tipc] [] tipcaeaddecryptdone+0x215/0x2e0 [tipc] [] cryptdaeadcrypt+0xdb/0x190 [] cryptdqueueworker+0xed/0x190 [] processonework+0x93d/0x17e0

Affected Software

19 affected componentsFixes available
redhat/kernel<5.10.221
5.10.221
redhat/kernel<5.15.162
5.15.162
redhat/kernel<6.1.96
6.1.96
redhat/kernel<6.6.36
6.6.36
redhat/kernel<6.9.7
6.9.7
redhat/kernel<6.10
6.10
debian/linux
5.10.223-15.10.234-16.1.129-16.1.135-16.12.25-1
debian/linux-6.1
6.1.129-1~deb11u1
IBM Security Verify Governance<=ISVG 10.0.2
IBM Security Verify Governance - Identity Manager virtual appliance component<=ISVG 10.0.2
Linux Linux kernel>=5.5<5.10.221
Linux Linux kernel>=5.11<5.15.162
Linux Linux kernel>=5.16<6.1.96
Linux Linux kernel>=6.2<6.6.36
Linux Linux kernel>=6.7<6.9.7
Linux Linux kernel=6.10-rc1
Linux Linux kernel=6.10-rc2
Linux Linux kernel=6.10-rc3
Linux Linux kernel=6.10-rc4

Remediation

Patch Available

https://git.kernel.org/stable/c/2ebe8f840c7450ecbfca9d18ac92e9ce9155e269

Patch Available

https://git.kernel.org/stable/c/3eb1b39627892c4e26cb0162b75725aa5fcc60c8

Patch Available

https://git.kernel.org/stable/c/623c90d86a61e3780f682b32928af469c66ec4c2

Patch Available

https://git.kernel.org/stable/c/6808b41371670c51feea14f63ade211e78100930

Patch Available

https://git.kernel.org/stable/c/692803b39a36e63ac73208e0a3769ae6a2f9bc76

Patch Available

https://git.kernel.org/stable/c/b57a4a2dc8746cea58a922ebe31b6aa629d69d93

Event History

Jul 12, 2024
CVE Published
via MITRE·12:33 PM
Data Sourced
via MITRE·12:33 PM
Description
Data Sourced
via NVD·01:15 PM
Description
Data Sourced
via NVD·01:15 PM
RemedySeverityAffected Software
Apr 27, 2025
Data Sourced
via Ubuntu·06:15 PM
RemedyDescriptionSeverityAffected Software

Parent advisories

This vulnerability appears in the following advisories.

Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Frequently Asked Questions

1

What is the severity of CVE-2024-40983?

The severity of CVE-2024-40983 is not explicitly assigned, but it involves a vulnerability in the Linux kernel which can potentially affect system stability and security.

2

How do I fix CVE-2024-40983?

To fix CVE-2024-40983, you should update your Linux kernel to one of the remedied versions: 5.10.221, 5.15.162, 6.1.96, 6.6.36, 6.9.7, 6.10, or the specific Debian version updates.

3

Which Linux kernel versions are affected by CVE-2024-40983?

CVE-2024-40983 affects multiple kernel versions, specifically versions prior to 5.10.221, 5.15.162, 6.1.96, 6.6.36, 6.9.7, and 6.10.

4

Is my distribution vulnerable to CVE-2024-40983?

If you are using a version of the Linux kernel that is below the remedied versions listed, your distribution may be vulnerable to CVE-2024-40983.

5

What types of systems are impacted by CVE-2024-40983?

CVE-2024-40983 impacts any systems running the vulnerable Linux kernel versions, which can include servers, workstations, and embedded devices.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203