#VU101920 Integer overflow in Linux kernel - CVE-2024-53145
Vulnerability identifier: #VU101920
Vulnerability risk: Low
CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID:
CWE-ID:
CWE-190
Exploitation vector: Local
Exploit availability: No
Vulnerable software:
Linux kernel
Operating systems & Components /
Operating system
Vendor: Linux Foundation
Description
The vulnerability allows a local user to execute arbitrary code.
The vulnerability exists due to integer overflow within the setup_physmem() function in arch/um/kernel/physmem.c. A local user can execute arbitrary code.
Mitigation
Install update from vendor's website.
Vulnerable software versions
Linux kernel: All versions
External links
https://git.kernel.org/stable/c/1575df968650d11771359e5ac78278c5b0cc19f3
https://git.kernel.org/stable/c/1bd118c5f887802cef2d9ba0d1917258667f1cae
https://git.kernel.org/stable/c/5c710f45811e7e2bfcf703980c306f19c7e1ecfe
https://git.kernel.org/stable/c/a875c023155ea92b75d6323977003e64d92ae7fc
https://git.kernel.org/stable/c/a98b7761f697e590ed5d610d87fa12be66f23419
https://git.kernel.org/stable/c/a9c95f787b88b29165563fd97761032db77116e7
https://git.kernel.org/stable/c/d1a211e5210d31da8f49fc0021bf7129b726468c
https://git.kernel.org/stable/c/e6102b72edc4eb8c0858df00ba74b5ce579c8fa2
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
