CVE-2024-38542

Summary

In the Linux kernel, the following vulnerability has been resolved:

RDMA/mana_ib: boundary check before installing cq callbacks

Add a boundary check inside mana_ib_install_cq_cb to prevent index overflow.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxcf9cc859d6ff37ce52c09dfbb169b9ee25595a3f < f12afddfb142587d786df9e3cc4862190d3e2ec8affected
LinuxLinux2a31c5a7e0d87959a03e846523013c75f4395a91 < 168f6fbde0eabd71d1f4133df7d001a950b96977affected
LinuxLinux2a31c5a7e0d87959a03e846523013c75f4395a91 < f79edef79b6a2161f4124112f9b0c46891bb0b74affected
LinuxLinux6.8.2 < 6.8.12affected
LinuxLinux6.9affected
LinuxLinux0 < 6.9unaffected
LinuxLinux6.8.12 <= 6.8.*unaffected
LinuxLinux6.9.3 <= 6.9.*unaffected
LinuxLinux6.10 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References