Buffer overflow in Linux kernel dma idxd driver

1) Buffer overflow

EUVDB-ID: #VU93627

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-46920

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to manipulate data.

The vulnerability exists due to memory corruption within the process_misc_interrupts() function in drivers/dma/idxd/irq.c. A local user can manipulate data.

Mitigation

Install update from vendor's website.

Vulnerable software versions

Linux kernel: 5.10 - 5.12 rc8

CPE2.3

• cpe:2.3:o:linux_foundation:linux_kernel:5.10:*:*:*:*:*:*:*
• cpe:2.3:o:linux_foundation:linux_kernel:5.10:rc1:*:*:*:*:*:*
• cpe:2.3:o:linux_foundation:linux_kernel:5.10:rc2:*:*:*:*:*:*
• cpe:2.3:o:linux_foundation:linux_kernel:5.10:rc3:*:*:*:*:*:*
• cpe:2.3:o:linux_foundation:linux_kernel:5.10:rc4:*:*:*:*:*:*
• cpe:2.3:o:linux_foundation:linux_kernel:5.10:rc5:*:*:*:*:*:*
• cpe:2.3:o:linux_foundation:linux_kernel:5.10:rc7:*:*:*:*:*:*
• cpe:2.3:o:linux_foundation:linux_kernel:5.10.1:*:*:*:*:*:*:*
• cpe:2.3:o:linux_foundation:linux_kernel:5.10.2:*:*:*:*:*:*:*
• cpe:2.3:o:linux_foundation:linux_kernel:5.10.3:*:*:*:*:*:*:*

External links

https://git.kernel.org/stable/c/a5ad12d5d69c63af289a37f05187a0c6fe93553d
https://git.kernel.org/stable/c/02981a44a0e402089775416371bd2e0c935685f8
https://git.kernel.org/stable/c/ea941ac294d75d0ace50797aebf0056f6f8f7a7f
https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.32
https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.11.16
https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.12

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.