CVE-2024-49973: 
Linux Kernel vulnerability analysis and mitigation

CVE-2024-49973 is a vulnerability in the Linux kernel's r8169 network driver, specifically affecting the RTL8125 network adapter implementation. The vulnerability was discovered on September 17, 2024, and publicly disclosed on October 21, 2024. The issue affects Linux kernel versions from 5.4 up to versions before 5.10.227, 5.15.168, 6.1.113, and 6.6.55 (NVD).

The vulnerability stems from the RTL8125 network adapter adding new fields to the tally counter without proper memory allocation. This could result in the chip performing DMA operations to unallocated memory areas. The issue has been assigned a CVSS v3.1 base score of 5.5 (Medium) with the vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H, indicating local access is required and the primary impact is on system availability (NVD).

The vulnerability can lead to the network adapter attempting to access unallocated memory areas through DMA operations, which could potentially cause system instability or crashes. The CVSS scoring indicates that while there are no direct confidentiality or integrity impacts, the vulnerability can significantly affect system availability (NVD).

The vulnerability has been fixed in the Linux kernel through patches that ensure proper memory allocation for all tally counter values. Fixed versions include Linux kernel 5.10.227, 5.15.168, 6.1.113, and 6.6.55. Multiple distributions have released updates including Ubuntu, Debian, and others (Kernel Patch).