CVE-2024-57935: 
Linux Kernel vulnerability analysis and mitigation

CVE-2024-57935 is a vulnerability discovered in the Linux kernel's RDMA/hns (Remote Direct Memory Access/HiSilicon Network Subsystem) component. The vulnerability was disclosed on January 21, 2025, and involves an issue where invalid dip_ctx (Destination IP Context) is accessed during QP (Queue Pair) destruction when the QP modification to RTR (Ready to Receive) state fails (NVD, Debian Tracker).

The vulnerability occurs in the Linux kernel's RDMA/hns driver, specifically in the Queue Pair destruction process. When a QP fails to modify to RTR state, the dipctx is not attached properly. Subsequently, during QP destruction, the code attempts to access this invalid dipctx pointer. This issue was introduced by commit faa62440a577 titled "RDMA/hns: Fix different dgids mapping to the same dip_idx" (Kernel Commit).

The vulnerability affects the Linux kernel's RDMA subsystem, particularly systems using HiSilicon's network hardware. The impact is primarily related to memory handling in the RDMA/hns driver, which could potentially lead to system instability when destroying Queue Pairs under specific conditions (Ubuntu Security).

A fix has been implemented in the Linux kernel through commit 0572eccf239ce4bd89bd531767ec5ab20e249290. The patch adds a null check for hr_dip before accessing it, preventing the invalid pointer access. Various Linux distributions have incorporated this fix, including Debian Bookworm (6.1.128-1) and Sid/Trixie (6.12.17-1) (Debian Tracker).