CVE-2024-26684

net: stmmac: xgmac: fix handling of DPP safety error for DMA channels

Description

In the Linux kernel, the following vulnerability has been resolved: net: stmmac: xgmac: fix handling of DPP safety error for DMA channels Commit 56e58d6c8a56 ("net: stmmac: Implement Safety Features in XGMAC core") checks and reports safety errors, but leaves the Data Path Parity Errors for each channel in DMA unhandled at all, lead to a storm of interrupt. Fix it by checking and clearing the DMA_DPP_Interrupt_Status register.

5.5
CVSS
Severity: Medium
CVSS 3.1 •
EPSS 0.01%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/e9837c83befb5b852fa76425dde98a87b737df00 patch
https://git.kernel.org/stable/c/2fc45a4631ac7837a5c497cb4f7e2115d950fc37 patch
https://git.kernel.org/stable/c/6609e98ed82966a1b3168c142aca30f8284a7b89 patch
https://git.kernel.org/stable/c/e42ff0844fe418c7d03a14f9f90e1b91ba119591 patch
https://git.kernel.org/stable/c/7e0ff50131e9d1aa507be8e670d38e9300a5f5bf patch
https://git.kernel.org/stable/c/3b48c9e258c8691c2f093ee07b1ea3764caaa1b2 patch
https://git.kernel.org/stable/c/46eba193d04f8bd717e525eb4110f3c46c12aec3 patch
https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html mailing list

Frequently Asked Questions

What is the severity of CVE-2024-26684?
CVE-2024-26684 has been scored as a medium severity vulnerability.
How to fix CVE-2024-26684?
To fix CVE-2024-26684, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2024-26684 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2024-26684 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2024-26684?
CVE-2024-26684 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.