#VU103924 Buffer overflow in Linux kernel - CVE-2024-57952
Vulnerability identifier: #VU103924
Vulnerability risk: Low
CVSSv4.0: 1.7 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:U/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID:
CWE-ID:
CWE-119
Exploitation vector: Local
Exploit availability: No
Vulnerable software:
Linux kernel
Operating systems & Components /
Operating system
Vendor: Linux Foundation
Description
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the simple_offset_destroy(), offset_dir_open(), offset_dir_llseek(), offset_dir_emit() and offset_iterate_dir() functions in fs/libfs.c. A local user can perform a denial of service (DoS) attack.
Mitigation
Install update from vendor's website.
Vulnerable software versions
Linux kernel: 6.12, 6.12.1, 6.12.2, 6.12.3, 6.12.4, 6.12.5, 6.12.6, 6.12.7, 6.12.8, 6.12.9, 6.12.10, 6.12.11, 6.13
External links
https://git.kernel.org/stable/c/3f250b82040a72b0059ae00855a74d8570ad2147
https://git.kernel.org/stable/c/9e9e710f68bac49bd9b587823c077d06363440e0
https://git.kernel.org/stable/c/b662d858131da9a8a14e68661656989b14dbf113
https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.12.12
https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.13.1
https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.14
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
