Description

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: DR, prevent potential error pointer dereference The dr_domain_add_vport_cap() function generally returns NULL on error but sometimes we want it to return ERR_PTR(-EBUSY) so the caller can retry. The problem here is that "ret" can be either -EBUSY or -ENOMEM and if it's and -ENOMEM then the error pointer is propogated back and eventually dereferenced in dr_ste_v0_build_src_gvmi_qpn_tag().

INFO

Published Date :

2024-12-27T15:06:23.161Z

Last Modified :

2025-11-03T20:52:04.509Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-56660 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-56660.

URL Resource
https://git.kernel.org/stable/c/11776cff0b563c8b8a4fa76cab620bfb633a8cb8 cve-icon cve-icon
https://git.kernel.org/stable/c/325cf73a1b449fea3158ab99d03a7a717aad1618 cve-icon cve-icon
https://git.kernel.org/stable/c/61f720e801443d4e2a3c0261eda4ad8431458dca cve-icon cve-icon
https://git.kernel.org/stable/c/a59c61a1869ceefc65ef02886f91e8cd0062211f cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2025/03/msg00001.html cve-icon
https://lore.kernel.org/linux-cve-announce/2024122751-CVE-2024-56660-fb9d@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-56660 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-56660 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact