Out-of-bounds read in Linux kernel ethernet mediatek driver

1) Out-of-bounds read

EUVDB-ID: #VU104514

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49368

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the mtk_hwlro_get_fdir_entry() function in drivers/net/ethernet/mediatek/mtk_eth_soc.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Install update from vendor's website.

Vulnerable software versions

Linux kernel: All versions

CPE2.3

• cpe:2.3:o:linux_foundation:linux_kernel:*:*:*:*:*:*:*:*

External links

https://git.kernel.org/stable/c/0b238f75b65ed4462ef4cdfa718cac0ac7fce3b8
https://git.kernel.org/stable/c/2bd1faedb74dc2a2be3972abcd4239b75a3e7b00
https://git.kernel.org/stable/c/4cde554c70d7397cfa2e4116bacb4accdfb6fd48
https://git.kernel.org/stable/c/5ba81f82607ead85fe36f50869fc4f5661359ab8
https://git.kernel.org/stable/c/657e7174603f0aab2cdedc64ac81edffd2a87afe
https://git.kernel.org/stable/c/71ae30662ec610b92644d13f79c78f76f17873b3
https://git.kernel.org/stable/c/b24ca1cf846273361d5bd73a35de95a486a54b6d
https://git.kernel.org/stable/c/b4f0e57ea0d867aacffad7999527e48bd4ea9293
https://git.kernel.org/stable/c/e7e7104e2d5ddf3806a28695670f21bef471f1e1

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.