CVE-2024-27437

vfio/pci: Disable auto-enable of exclusive INTx IRQ

References

Notes

 carnil> Introduced in 89e1f7d4c66d ("vfio: Add PCI device driver"). Vulnerable
 carnil> versions: 3.6-rc1.

Bugs

Status

Branch Status
4.19-buster-security needed
4.19-upstream-stable needed
5.10-bullseye-security released (5.10.216-1)
5.10-upstream-stable released (5.10.215) [561d5e1998d58b54ce2bbbb3e843b669aa0b3db5]
6.1-bookworm-security released (6.1.85-1)
6.1-upstream-stable released (6.1.84) [139dfcc4d723ab13469881200c7d80f49d776060]
6.6-upstream-stable released (6.6.24) [2a4a666c45107206605b7b5bc20545f8aabc4fa2]
6.8-upstream-stable released (6.8.3) [bf0bc84a20e6109ab07d5dc072067bd01eb931ec]
sid released (6.7.12-1)
upstream released (6.9-rc1) [fe9a7082684eb059b925c535682e68c34d487d43]