CVE-2024-42134

MEDIUM

Linux Kernel < 6.9.9 - NULL Pointer Dereference in virtio-pci Admin Virtqueue Handling

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: virtio-pci: Check if is_avq is NULL [bug] In the virtio_pci_common.c function vp_del_vqs, vp_dev->is_avq is involved to determine whether it is admin virtqueue, but this function vp_dev->is_avq may be empty. For installations, virtio_pci_legacy does not assign a value to vp_dev->is_avq. [fix] Check whether it is vp_dev->is_avq before use. [test] Test with virsh Attach device Before this patch, the following command would crash the guest system After applying the patch, everything seems to be working fine.

References (2)

Core 2

Core References

Patch

https://git.kernel.org/stable/c/5e2024b0b9b3d5709e3f7e9b92951d7e29154106

Patch

https://git.kernel.org/stable/c/c8fae27d141a32a1624d0d0d5419d94252824498

Scores

CVSS v3 5.5

EPSS 0.0020

EPSS Percentile 9.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-476

Status published

Products (8)

linux/Kernel 6.8.0 - 6.9.9linux

Linux/Linux < 6.8

Linux/Linux 6.10

Linux/Linux 6.8

Linux/Linux 6.9.9 - 6.9.*

Linux/Linux fd27ef6b44bec26915c5b2b22c13856d9f0ba17a - 5e2024b0b9b3d5709e3f7e9b92951d7e29154106

Linux/Linux fd27ef6b44bec26915c5b2b22c13856d9f0ba17a - c8fae27d141a32a1624d0d0d5419d94252824498

linux/linux_kernel < 6.9.9

Published Jul 30, 2024

Tracked Since Feb 18, 2026