CVE-2024-41005: netpoll: Fix race condition in netpoll_owner_active

Published Jul 12, 2024
·
Updated

In the Linux kernel, the following vulnerability has been resolved:

netpoll: Fix race condition in netpollowneractive

KCSAN detected a race condition in netpoll:

BUG: KCSAN: data-race in netrxaction / netpollsendskb write (marked) to 0xffff8881164168b0 of 4 bytes by interrupt on cpu 10: netrxaction (./include/linux/netpoll.h:90 net/core/dev.c:6712 net/core/dev.c:6822) <snip> read to 0xffff8881164168b0 of 4 bytes by task 1 on cpu 2: netpollsendskb (net/core/netpoll.c:319 net/core/netpoll.c:345 net/core/netpoll.c:393) netpollsendudp (net/core/netpoll.c:?) <snip> value changed: 0x0000000a -> 0xffffffff

This happens because netpollowneractive() needs to check if the current CPU is the owner of the lock, touching napi->pollowner non atomically. The ->pollowner field contains the current CPU holding the lock.

Use an atomic read to check if the poll owner is the current CPU.

Other sources

Linux Kernel is vulnerable to a denial of service, caused by a race condition in netpollowneractive. By sending a specially crafted request, a local authenticated attacker could exploit this vulnerability to cause a denial of service condition.

IBM

Affected Software

17 affected componentsFixes available
redhat/kernel<5.10.221
5.10.221
redhat/kernel<5.15.162
5.15.162
redhat/kernel<6.1.96
6.1.96
redhat/kernel<6.6.36
6.6.36
redhat/kernel<6.9.7
6.9.7
redhat/kernel<6.10
6.10
IBM Security Verify Governance<=ISVG 10.0.2
IBM Security Verify Governance, Identity Manager Software Stack<=ISVG 10.0.2
IBM Security Verify Governance, Identity Manager Virtual Appliance<=ISVG 10.0.2
IBM Security Verify Governance Identity Manager Container<=ISVG 10.0.2
debian/linux
5.10.223-15.10.234-16.1.129-16.1.135-16.12.25-16.12.27-1
debian/linux-6.1
6.1.129-1~deb11u1
Linux Linux kernel<5.10.221
Linux Linux kernel>=5.11<5.15.162
Linux Linux kernel>=5.16<6.1.96
Linux Linux kernel>=6.2<6.6.36
Linux Linux kernel>=6.7<6.9.7

Remediation

Patch Available

https://git.kernel.org/stable/c/3f1a155950a1685ffd0fd7175b3f671da8771f3d

Patch Available

https://git.kernel.org/stable/c/43c0ca793a18578a0f5b305dd77fcf7ed99f1265

Patch Available

https://git.kernel.org/stable/c/96826b16ef9c6568d31a1f6ceaa266411a46e46c

Patch Available

https://git.kernel.org/stable/c/a130e7da73ae93afdb4659842267eec734ffbd57

Patch Available

https://git.kernel.org/stable/c/c2e6a872bde9912f1a7579639c5ca3adf1003916

Patch Available

https://git.kernel.org/stable/c/efd29cd9c7b8369dfc7bcb34637e6bf1a188aa8e

Event History

Jul 12, 2024
CVE Published
via MITRE·12:44 PM
Data Sourced
via MITRE·12:44 PM
Description
Data Sourced
via NVD·01:15 PM
Description
Data Sourced
via NVD·01:15 PM
RemedySeverityWeaknessAffected Software
May 9, 2025
Data Sourced
via Ubuntu·06:19 PM
RemedyDescriptionSeverityAffected Software

Parent advisories

This vulnerability appears in the following advisories.

Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Frequently Asked Questions

1

What is the severity of CVE-2024-41005?

CVE-2024-41005 has been classified as a moderate severity vulnerability affecting the Linux kernel.

2

How do I fix CVE-2024-41005?

To fix CVE-2024-41005, upgrade the Linux kernel to the recommended versions based on your distribution, such as 5.10.221 or higher for Red Hat.

3

What systems are affected by CVE-2024-41005?

CVE-2024-41005 affects Linux kernel versions prior to 5.10.221, 5.15.162, 6.1.96, 6.6.36, and additional versions listed for Debian.

4

What kind of vulnerability is CVE-2024-41005?

CVE-2024-41005 is a race condition vulnerability in the netpoll subsystem of the Linux kernel.

5

Is CVE-2024-41005 exploitable remotely?

CVE-2024-41005's exploitation potential may depend on network configurations and specific conditions within the affected systems.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203