Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home Alerts

Multiple Linux Kernel Flaws Patched for 2024

November 22, 2024
Reading Time: 2 mins read
in Alerts
Multiple Linux Kernel Flaws Patched for 2024

The Linux kernel development team recently addressed two critical vulnerabilities in the kernel’s handling of NVMe multipath and RDMA/siw functionality, impacting various Linux distributions. These vulnerabilities, identified as CVE-2024-53093 and CVE-2024-53094, were discovered in late October 2024 and pose significant risks to system stability and security. The first issue in the NVMe multipath functionality could lead to a deadlock situation under certain conditions, where partition scanning within the controller’s scan_work context blocked the process. The second vulnerability in the RDMA/siw (Software iWARP) driver caused warnings regarding slab page usage during send_page operations, which could result in potential instability in RDMA communications over TCP/IP.

The first issue, CVE-2024-53093, arose when partition scanning in the NVMe multipath system occurred within the scan_work context, which could cause a deadlock if a path error occurred during scanning. To address this, the kernel developers have modified the system to defer partition scanning to a different context, ensuring that the process no longer blocks scan_work. This fix effectively prevents potential system hangs, enabling smoother operation of NVMe multipath systems across affected versions.

The second vulnerability, CVE-2024-53094, impacted the RDMA/siw driver used for RDMA communication over TCP/IP. The issue manifested when running iSCSI Extensions for RDMA (iSER) over SIW, leading to warnings about slab page usage during send_page operations. The Linux development team addressed this by implementing a sendpage_ok() check in the driver, which disables the MSG_SPLICE_PAGES flag if it returns 0, preventing issues related to skb_splice_from_iter(). This fix ensures the integrity of the RDMA/siw functionality and mitigates potential communication disruptions.

Both vulnerabilities affected multiple versions of the Linux kernel, including long-term support (LTS) releases, with patches backported to the affected stable kernel versions. Users and system administrators are strongly advised to update their kernels to the latest patched versions to protect against these issues. The patches are available through standard update channels and distribution-specific package managers. Regular updates and prompt attention to kernel vulnerabilities remain essential for maintaining the security and performance of Linux-based systems.

Reference:
  • Linux Kernel Patches Address Critical NVMe and RDMA Vulnerabilities in 2024
  • CVE-2024-53094
Tags: Cyber AlertsCyber Alerts 2024Cyber threatsKernelLinuxNovember 2024SoftwareVulnerabilities
ADVERTISEMENT

Related Posts

Glibc Flaw Gives Linux Root Access Risk

Mozilla Urgent Firefox Patch Fixes RCE Flaws

May 19, 2025
Fileless Remcos RAT Delivery Via LNK Files

ModiLoader Malware Targets Windows Users

May 19, 2025
Glibc Flaw Gives Linux Root Access Risk

Glibc Flaw Gives Linux Root Access Risk

May 19, 2025
Fileless Remcos RAT Delivery Via LNK Files

APT28 RoundPress Webmail Hack Steals Emails

May 16, 2025
Fileless Remcos RAT Delivery Via LNK Files

FBI Warns of AI Voice Phishing Scams

May 16, 2025
Fileless Remcos RAT Delivery Via LNK Files

Fileless Remcos RAT Delivery Via LNK Files

May 16, 2025

Latest Alerts

Mozilla Urgent Firefox Patch Fixes RCE Flaws

ModiLoader Malware Targets Windows Users

Glibc Flaw Gives Linux Root Access Risk

Fileless Remcos RAT Delivery Via LNK Files

FBI Warns of AI Voice Phishing Scams

APT28 RoundPress Webmail Hack Steals Emails

Subscribe to our newsletter

    Latest Incidents

    Massive DDoS Hits Poland’s Civic Platform

    Arla Plant Cyberattack Halts Operations

    Georgia’s Harbin Clinic Hit by Data Breach

    Hackers Target Swiss Reserve Power Plant

    Coinbase Insider Attack Exposed User Data

    Cyberattack Hits J Batista Group

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial