#VU102084 Out-of-bounds read in Linux kernel - CVE-2024-56614

Cybersecurity Help s.r.o.

Published: 2024-12-30

Vulnerability identifier: #VU102084

Vulnerability risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-56614

CWE-ID: CWE-125

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system

Vendor: Linux Foundation

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the xsk_map_delete_elem() function in net/xdp/xskmap.c. A local user can perform a denial of service (DoS) attack.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Linux kernel: All versions

External links
https://git.kernel.org/stable/c/32cd3db7de97c0c7a018756ce66244342fd583f0
https://git.kernel.org/stable/c/4d03f705e9d7aabebc6bfa5810f8aab6d176cbb7
https://git.kernel.org/stable/c/d486b5741d987d3e0e6be4ac22cafdf94e6d1a47
https://git.kernel.org/stable/c/ed08c93d5a9801cc8f224a046411fd603c538d07
https://git.kernel.org/stable/c/f8abd03f83d5fe81e76eb93e2c4373eb9f75fd8a

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Ubuntu update for linux-aws-6.8

Ubuntu update for linux-azure-6.8

Ubuntu update for linux-azure

Ubuntu update for linux-azure-5.15

Ubuntu update for linux-iot

Ubuntu update for linux-hwe-5.15

Ubuntu update for linux-hwe-6.8

Ubuntu update for linux-raspi

Ubuntu update for linux-aws

Ubuntu update for linux-aws-fips