Description

In the Linux kernel, the following vulnerability has been resolved: net: ena: Add validation for completion descriptors consistency Validate that `first` flag is set only for the first descriptor in multi-buffer packets. In case of an invalid descriptor, a reset will occur. A new reset reason for RX data corruption has been added.

INFO

Published Date :

2024-07-12T12:37:40.507Z

Last Modified :

2025-07-28T11:16:34.639Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-40999 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-40999.

URL Resource
https://git.kernel.org/stable/c/42146ee5286f16f1674a84f7c274dcca65c6ff2e cve-icon cve-icon
https://git.kernel.org/stable/c/b37b98a3a0c1198bafe8c2d9ce0bc845b4e7a9a7 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024071252-CVE-2024-40999-8c1b@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-40999 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-40999 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact