Buffer overflow in Linux kernel hw mana driver

1) Buffer overflow

EUVDB-ID: #VU93306

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-38542

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the mana_ib_install_cq_cb() function in drivers/infiniband/hw/mana/cq.c. A local user can escalate privileges on the system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

Linux kernel: 6.8 - 6.8.11

CPE2.3

• cpe:2.3:o:linux_foundation:linux_kernel:6.8:*:*:*:*:*:*:*
• cpe:2.3:o:linux_foundation:linux_kernel:6.8:rc1:*:*:*:*:*:*
• cpe:2.3:o:linux_foundation:linux_kernel:6.8:rc2:*:*:*:*:*:*
• cpe:2.3:o:linux_foundation:linux_kernel:6.8:rc5:*:*:*:*:*:*
• cpe:2.3:o:linux_foundation:linux_kernel:6.8.1:*:*:*:*:*:*:*
• cpe:2.3:o:linux_foundation:linux_kernel:6.8.2:*:*:*:*:*:*:*
• cpe:2.3:o:linux_foundation:linux_kernel:6.8.3:*:*:*:*:*:*:*
• cpe:2.3:o:linux_foundation:linux_kernel:6.8.4:*:*:*:*:*:*:*
• cpe:2.3:o:linux_foundation:linux_kernel:6.8.5:*:*:*:*:*:*:*
• cpe:2.3:o:linux_foundation:linux_kernel:6.8.6:*:*:*:*:*:*:*

External links

https://git.kernel.org/stable/c/f12afddfb142587d786df9e3cc4862190d3e2ec8
https://git.kernel.org/stable/c/168f6fbde0eabd71d1f4133df7d001a950b96977
https://git.kernel.org/stable/c/f79edef79b6a2161f4124112f9b0c46891bb0b74
https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.10
https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.8.12

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.