CVE-2024-26707: 
Linux Kernel vulnerability analysis and mitigation

CVE-2024-26707 affects the Linux kernel's High-availability Seamless Redundancy (HSR) protocol implementation. The vulnerability was discovered when Syzkaller reported a warning after failing to allocate resources for skb in hsrinitskb(). The issue was identified in January 2024 and affects Linux kernel versions up to 5.10 (Kernel Git).

The vulnerability involves a WARNONCE() call in the sendhsrsupervisionframe() function that triggers when resource allocation fails. The issue occurs in the net/hsr/hsrdevice.c file at line 294. The problem was addressed by replacing WARNONCE() with netdevwarnonce() to provide more appropriate warning behavior for both HSR and PRP supervision frame sending functions (Kernel Git).

The vulnerability could potentially lead to system warnings and logging issues when the HSR protocol fails to allocate resources for supervision frames. This affects the kernel's ability to properly handle resource allocation failures in the HSR networking subsystem (NVD).

The vulnerability has been patched in the Linux kernel by replacing the WARNONCE() call with netdevwarnonce() in both sendhsrsupervisionframe() and sendprpsupervision_frame() functions. The fix has been backported to affected stable kernel versions, including the 5.10 series (Debian LTS).