Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-a1sf-776n-dyb8
Vulnerability ID VCID-a1sf-776n-dyb8
Aliases CVE-2024-42107
Summary In the Linux kernel, the following vulnerability has been resolved: ice: Don't process extts if PTP is disabled The ice_ptp_extts_event() function can race with ice_ptp_release() and result in a NULL pointer dereference which leads to a kernel panic. Panic occurs because the ice_ptp_extts_event() function calls ptp_clock_event() with a NULL pointer. The ice driver has already released the PTP clock by the time the interrupt for the next external timestamp event occurs. To fix this, modify the ice_ptp_extts_event() function to check the PTP state and bail early if PTP is not ready.
Status Published
Exploitability 0.5
Weighted Severity 5.0
Risk 2.5
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
cvssv3 5.5 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-42107.json
epss 7e-05 https://api.first.org/data/v1/epss?cve=CVE-2024-42107
epss 7e-05 https://api.first.org/data/v1/epss?cve=CVE-2024-42107
epss 7e-05 https://api.first.org/data/v1/epss?cve=CVE-2024-42107
cvssv3.1 5.5 https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
ssvc Track https://git.kernel.org/stable/c/1c4e524811918600683b1ea87a5e0fc2db64fa9b
ssvc Track https://git.kernel.org/stable/c/996422e3230e41468f652d754fefd1bdbcd4604e
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-42107.json
https://api.first.org/data/v1/epss?cve=CVE-2024-42107
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
1c4e524811918600683b1ea87a5e0fc2db64fa9b https://git.kernel.org/stable/c/1c4e524811918600683b1ea87a5e0fc2db64fa9b
2301766 https://bugzilla.redhat.com/show_bug.cgi?id=2301766
996422e3230e41468f652d754fefd1bdbcd4604e https://git.kernel.org/stable/c/996422e3230e41468f652d754fefd1bdbcd4604e
RHSA-2024:5672 https://access.redhat.com/errata/RHSA-2024:5672
RHSA-2024:5673 https://access.redhat.com/errata/RHSA-2024:5673
No exploits are available.
Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-42107.json
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-10T16:17:43Z/ Found at https://git.kernel.org/stable/c/1c4e524811918600683b1ea87a5e0fc2db64fa9b
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-10T16:17:43Z/ Found at https://git.kernel.org/stable/c/996422e3230e41468f652d754fefd1bdbcd4604e
Exploit Prediction Scoring System (EPSS)
Percentile 0.00648
EPSS Score 7e-05
Published At June 6, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-06-04T16:51:11.740478+00:00 Debian Importer Import https://security-tracker.debian.org/tracker/data/json 38.6.0