CVE-2024-38593: 
Linux Kernel vulnerability analysis and mitigation

CVE-2024-38593 affects the Linux kernel's network driver for the Micrel LAN8841 PHY device. The vulnerability was discovered and disclosed on June 19, 2024. The issue occurs in the timestamp handling functionality when the NETWORKPHYTIMESTAMPING configuration option is disabled (NVD).

The vulnerability stems from improper handling of the PTP workqueue in the LAN8841 driver. When the port is set down, the workqueue is stopped, but if NETWORKPHYTIMESTAMPING is not enabled, the ptp_clock remains uninitialized. This leads to a crash when attempting to access the delayed work during port shutdown. The issue was introduced by commit cc7554954848 which changed the timestamp reception mechanism for the LAN8841 device (Kernel Commit). CVSS v3.1 Base Score: 5.5 MEDIUM (AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H) (NVD).

The vulnerability can cause a system crash when setting up and then shutting down a network port on affected systems using the LAN8841 PHY device with NETWORKPHYTIMESTAMPING disabled (NVD).

The issue has been fixed in the Linux kernel through a patch that adds a check to verify if ptp_clock is initialized before attempting to cancel the delayed work. The fix has been backported to various stable kernel versions and is available in distribution updates (Red Hat, Ubuntu).