CVE-2024-26820

hv_netvsc: Register VF in netvsc_probe if NET_DEVICE_REGISTER missed

References

https://cve.org/CVERecord/?id=CVE-2024-26820

Notes

 carnil> Introduced in 85520856466e ("hv_netvsc: Fix race of register_netdevice_notifier
 carnil> and VF register"). Vulnerable versions: 4.19.301 5.4.263 5.10.203 5.15.141
 carnil> 6.1.65 6.6.4 6.7-rc3.

Bugs

Status

Branch	Status
4.19-buster-security	needed
4.19-upstream-stable	released (4.19.310) [bcb7164258d0a9a8aa2e73ddccc2d78f67d2519d]
5.10-bullseye-security	released (5.10.216-1)
5.10-upstream-stable	released (5.10.213) [5b10a88f64c0315cfdef45de0aaaa4eef57de0b7]
6.1-bookworm-security	released (6.1.82-1)
6.1-upstream-stable	released (6.1.79) [309ef7de5d840e17607e7d65cbf297c0564433ef]
6.6-upstream-stable	released (6.6.18) [a71302c8638939c45e4ba5a99ea438185fd3f418]
6.8-upstream-stable	N/A "Fixed before branching point"
sid	released (6.7.7-1)
upstream	released (6.8-rc4) [9cae43da9867412f8bd09aee5c8a8dc5e8dc3dc2]