#VU94135 Input validation error in Linux kernel - CVE-2024-26830


Vulnerability identifier: #VU94135

Vulnerability risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26830

CWE-ID: CWE-20

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system

Vendor: Linux Foundation

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the i40e_check_vf_permission() and i40e_vc_del_mac_addr_msg() functions in drivers/net/ethernet/intel/i40e/i40e_virtchnl_pf.c. A local user can perform a denial of service (DoS) attack.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Linux kernel: All versions

External links
https://git.kernel.org/stable/c/1c981792e4ccbc134b468797acdd7781959e6893
https://git.kernel.org/stable/c/be147926140ac48022c9605d7ab0a67387e4b404
https://git.kernel.org/stable/c/d250a81ba813a93563be68072c563aa1e346346d
https://git.kernel.org/stable/c/73d9629e1c8c1982f13688c4d1019c3994647ccc

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Multiple vulnerabilities in VolSync
Multiple vulnerabilities in Dell Secure Connect Gateway
Multiple vulnerabilities in Red Hat OpenShift Container Platform 4.15
Red Hat Enterprise Linux 9 update for kernel-rt
Red Hat Enterprise Linux 9 update for kernel
Red Hat Enterprise Linux 8 update for kernel
Red Hat Enterprise Linux 8 update for kernel
Ubuntu update for linux-xilinx-zynqmp
Ubuntu update for linux-iot
Ubuntu update for linux-raspi-5.4