Out-of-bounds read in Linux kernel

#VU88821 Out-of-bounds read in Linux kernel

Published: 2024-04-18

Vulnerability identifier: #VU88821

Vulnerability risk: Low

CVSSv3.1: 4.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-52476

CWE-ID: CWE-125

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system

Vendor: Linux Foundation

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary condition within the branch_type() and get_branch_type() functions in arch/x86/events/utils.c. A local user can trigger an out-of-bounds read error and crash the kernel.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Linux kernel:

External links
http://git.kernel.org/stable/c/403d201d1fd144cb249836dafb222f6375871c6c
http://git.kernel.org/stable/c/3863989497652488a50f00e96de4331e5efabc6c
http://git.kernel.org/stable/c/f71edacbd4f99c0e12fe4a4007ab4d687d0688db
http://git.kernel.org/stable/c/e53899771a02f798d436655efbd9d4b46c0f9265

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Red Hat Enterprise Linux 9 update for kernel

openEuler 22.03 LTS SP3 update for kernel

openEuler 22.03 LTS SP2 update for kernel

openEuler 22.03 LTS SP1 update for kernel

openEuler 22.03 LTS update for kernel

openEuler 20.03 LTS SP4 update for kernel

openEuler 20.03 LTS SP1 update for kernel

Denial of service in Linux kernel LBR