#VU103133 Integer overflow in Linux kernel - CVE-2024-57938
Vulnerability identifier: #VU103133
Vulnerability risk: Low
CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID:
CWE-ID:
CWE-190
Exploitation vector: Local
Exploit availability: No
Vulnerable software:
Linux kernel
Operating systems & Components /
Operating system
Vendor: Linux Foundation
Description
The vulnerability allows a local user to execute arbitrary code.
The vulnerability exists due to integer overflow within the sctp_association_init() function in net/sctp/associola.c. A local user can execute arbitrary code.
Mitigation
Install update from vendor's website.
Vulnerable software versions
Linux kernel: All versions
External links
https://git.kernel.org/stable/c/081bdb3a31674339313c6d702af922bc29de2c53
https://git.kernel.org/stable/c/2297890b778b0e7c8200d6818154f7e461d78e94
https://git.kernel.org/stable/c/271f031f4c31c07e2a85a1ba2b4c8e734909a477
https://git.kernel.org/stable/c/4e86729d1ff329815a6e8a920cb554a1d4cb5b8d
https://git.kernel.org/stable/c/7af63ef5fe4d480064eb22583b24ffc8b408183a
https://git.kernel.org/stable/c/94b7ed0a4896420988e1776942f0a3f67167873e
https://git.kernel.org/stable/c/f9c3adb083d3278f065a83c3f667f1246c74c31f
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
