CVE-2024-26596

net: dsa: fix netdev_priv() dereference before check on non-DSA netdevice events

References

Notes

 carnil> Introduced in 4c3f80d22b2e ("net: dsa: walk through all changeupper notifier
 carnil> functions"). Vulnerable versions: 6.1-rc1.

Bugs

Status

Branch Status
4.19-buster-security N/A "Vulnerable code not present"
4.19-upstream-stable N/A "Vulnerable code not present"
5.10-bullseye-security N/A "Vulnerable code not present"
5.10-upstream-stable N/A "Vulnerable code not present"
6.1-bookworm-security needed
6.1-upstream-stable needed
6.6-upstream-stable needed
6.8-upstream-stable N/A "Fixed before branching point"
sid released (6.7.7-1)
upstream released (6.8-rc1) [844f104790bd69c2e4dbb9ee3eba46fde1fcea7b]