Description
In the Linux kernel, the following vulnerability has been resolved: ipv6/sit: use DEV_STATS_INC() to avoid data-races syzbot/KCSAN reported that multiple cpus are updating dev->stats.tx_error concurrently. This is because sit tunnels are NETIF_F_LLTX, meaning their ndo_start_xmit() is not protected by a spinlock. While original KCSAN report was about tx path, rx path has the same issue.
Product status
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before 222cc04356984f3f98acfa756a69d4bed7c501ac
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before 4eed93bb3e57b8cc78d17166a14e40a73276015a
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before 207501a986831174df09a36a8cb62a28f92f0dc8
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before cb34b7cf17ecf33499c9298943f85af247abc1e9
5.15.86 (semver)
6.0.16 (semver)
6.1.2 (semver)
6.2 (original_commit_for_fix)
References
git.kernel.org/...c/222cc04356984f3f98acfa756a69d4bed7c501ac
git.kernel.org/...c/4eed93bb3e57b8cc78d17166a14e40a73276015a
git.kernel.org/...c/207501a986831174df09a36a8cb62a28f92f0dc8
git.kernel.org/...c/cb34b7cf17ecf33499c9298943f85af247abc1e9
Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.
