Denial of service in Linux kernel pstore
| Risk | Low |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2024-27389 |
| CWE-ID | CWE-399 |
| Exploitation vector | Local |
| Public exploit | N/A |
| Vulnerable software |
Linux kernel Operating systems & Components / Operating system |
| Vendor | Linux Foundation |
Security Bulletin
This security bulletin contains one low risk vulnerability.
1) Resource management error
EUVDB-ID: #VU91608
Risk: Low
CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-27389
CWE-ID:
CWE-399 - Resource Management Errors
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper management of internal resources within the pstore_put_backend_records() function in fs/pstore/inode.c. A local user can perform a denial of service (DoS) attack.
MitigationInstall updates from vendor's website.
Vulnerable software versionsLinux kernel: 6.1 - 6.8.1
CPE2.3- cpe:2.3:o:linux_foundation:linux_kernel:6.1:*:*:*:*:*:*:*
- cpe:2.3:o:linux_foundation:linux_kernel:6.1:rc1:*:*:*:*:*:*
- cpe:2.3:o:linux_foundation:linux_kernel:6.1:rc3:*:*:*:*:*:*
- cpe:2.3:o:linux_foundation:linux_kernel:6.1:rc7:*:*:*:*:*:*
- cpe:2.3:o:linux_foundation:linux_kernel:6.1.1:*:*:*:*:*:*:*
- cpe:2.3:o:linux_foundation:linux_kernel:6.1.2:*:*:*:*:*:*:*
- cpe:2.3:o:linux_foundation:linux_kernel:6.1.3:*:*:*:*:*:*:*
- cpe:2.3:o:linux_foundation:linux_kernel:6.1.4:*:*:*:*:*:*:*
- cpe:2.3:o:linux_foundation:linux_kernel:6.1.5:*:*:*:*:*:*:*
- cpe:2.3:o:linux_foundation:linux_kernel:6.1.6:*:*:*:*:*:*:*
https://git.kernel.org/stable/c/db6e5e16f1ee9e3b01d2f71c7f0ba945f4bf0f4e
https://git.kernel.org/stable/c/4cdf9006fc095af71da80e9b5f48a32e991b9ed3
https://git.kernel.org/stable/c/cb9e802e49c24eeb3af35e9e8c04d526f35f112a
https://git.kernel.org/stable/c/340682ed1932b8e3bd0bfc6c31a0c6354eb57cc6
https://git.kernel.org/stable/c/a43e0fc5e9134a46515de2f2f8d4100b74e50de3
https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.83
https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.6.23
https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.7.11
https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.8.2
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
