#VU90305 Out-of-bounds read in Linux kernel - CVE-2024-35976

Cybersecurity Help s.r.o.

Published: 2024-05-31

Vulnerability identifier: #VU90305

Vulnerability risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-35976

CWE-ID: CWE-125

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system

Vendor: Linux Foundation

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the xsk_setsockopt() function in net/xdp/xsk.c. A local user can perform a denial of service (DoS) attack.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Linux kernel: All versions

External links
https://git.kernel.org/stable/c/a82984b3c6a7e8c7937dba6e857ddf829d149417
https://git.kernel.org/stable/c/f0a068de65d5b7358e9aff792716afa9333f3922
https://git.kernel.org/stable/c/2a523f14a3f53b46ff0e1fafd215b0bc5f6783aa
https://git.kernel.org/stable/c/b143e19dc28c3211f050f7848d87d9b0a170e10c
https://git.kernel.org/stable/c/2eb979fbb2479bcd7e049f2f9978b6590dd8a0e6
https://git.kernel.org/stable/c/237f3cf13b20db183d3706d997eedc3c49eacd44

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in IBM Security Guardium

Ubuntu update for linux-xilinx-zynqmp

Ubuntu update for linux-raspi-5.4

Ubuntu update for linux-bluefield

SUSE update for the Linux Kernel

Ubuntu update for linux-azure-5.4

Ubuntu update for linux-azure

Ubuntu update for linux-oracle

Ubuntu update for linux