CVE-2024-27431

Name	CVE-2024-27431
Description	In the Linux kernel, the following vulnerability has been resolved: cpumap: Zero-initialise xdp_rxq_info struct before running XDP program When running an XDP program that is attached to a cpumap entry, we don't initialise the xdp_rxq_info data structure being used in the xdp_buff that backs the XDP program invocation. Tobias noticed that this leads to random values being returned as the xdp_md->rx_queue_index value for XDP programs running in a cpumap. This means we're basically returning the contents of the uninitialised memory, which is bad. Fix this by zero-initialising the rxq data structure before running the XDP program.
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
References	DLA-3842-1

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
linux (PTS)	bullseye	5.10.218-1	fixed
	bullseye (security)	5.10.221-1	fixed
	bookworm	6.1.94-1	fixed
	bookworm (security)	6.1.99-1	fixed
	trixie	6.9.10-1	fixed
	sid	6.9.11-1	fixed

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Origin
linux	source	buster	(not affected)
linux	source	bullseye	5.10.216-1
linux	source	bookworm	6.1.82-1
linux	source	(unstable)	6.7.12-1
linux-5.10	source	buster	5.10.216-1~deb10u1	DLA-3842-1

[buster] - linux <not-affected> (Vulnerable code not present)
https://git.kernel.org/linus/2487007aa3b9fafbd2cb14068f49791ce1d7ede5 (6.8)