Detections
Analytics

CVE-2024-42116

medium

Description

In the Linux kernel, the following vulnerability has been resolved: igc: fix a log entry using uninitialized netdev During successful probe, igc logs this: [ 5.133667] igc 0000:01:00.0 (unnamed net_device) (uninitialized): PHC added ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ The reason is that igc_ptp_init() is called very early, even before register_netdev() has been called. So the netdev_info() call works on a partially uninitialized netdev. Fix this by calling igc_ptp_init() after register_netdev(), right after the media autosense check, just as in igb. Add a comment, just as in igb. Now the log message is fine: [ 5.200987] igc 0000:01:00.0 eth0: PHC added

References

https://git.kernel.org/stable/c/d478ec838cf2b1e1051a8709cfc744fe1c03110f

https://git.kernel.org/stable/c/991f036cabc3d13e886a37faeea1b6800181fdda

https://git.kernel.org/stable/c/98c8958980e829f023a490b9a9816ca1fe2f8b79

https://git.kernel.org/stable/c/96839f3f588236593de36465f142b0126267f8b6

https://git.kernel.org/stable/c/86167183a17e03ec77198897975e9fdfbd53cb0b

Details

Source: Mitre, NVD

Published: 2024-07-30

Updated: 2024-07-30

Risk Information

CVSS v2

Base Score: 4.3

Vector: CVSS2#AV:L/AC:L/Au:M/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 4.4

Vector: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

Severity: Medium