Description

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix responder length checking for UD request packets According to the IBA specification: If a UD request packet is detected with an invalid length, the request shall be an invalid request and it shall be silently dropped by the responder. The responder then waits for a new request packet. commit 689c5421bfe0 ("RDMA/rxe: Fix incorrect responder length checking") defers responder length check for UD QPs in function `copy_data`. But it introduces a regression issue for UD QPs. When the packet size is too large to fit in the receive buffer. `copy_data` will return error code -EINVAL. Then `send_data_in` will return RESPST_ERR_MALFORMED_WQE. UD QP will transfer into ERROR state.

INFO

Published Date :

2024-07-12T12:37:35.800Z

Last Modified :

2025-05-04T09:19:32.485Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-40992 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-40992.

URL Resource
https://git.kernel.org/stable/c/163868ec1f6c610d16da9e458fe1dd7d5de97341 cve-icon cve-icon
https://git.kernel.org/stable/c/943c94f41dfe36536dc9aaa12c9efdf548ceb996 cve-icon cve-icon
https://git.kernel.org/stable/c/f67ac0061c7614c1548963d3ef1ee1606efd8636 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024071250-CVE-2024-40992-6554@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-40992 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-40992 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact