CVE-2024-53228
7.8
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
riscv: kvm: Fix out-of-bounds array access
In kvm_riscv_vcpu_sbi_init() the entry->ext_idx can contain an out-of-bound index. This is used as a special marker for the base extensions, that cannot be disabled. However, when traversing the extensions, that special marker is not checked prior indexing the array.
Add an out-of-bounds check to the function.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 56d8a385b60556019ecb45d6098830c9ef6a13e0 < 3c49e1084a5df99807fc43dd318c491e6cbaa168 | affected |
| Linux | Linux | 56d8a385b60556019ecb45d6098830c9ef6a13e0 < b1af648f0d610665c956ea4604d9f797e5c7e991 | affected |
| Linux | Linux | 56d8a385b60556019ecb45d6098830c9ef6a13e0 < 332fa4a802b16ccb727199da685294f85f9880cb | affected |
| Linux | Linux | 6.7 | affected |
| Linux | Linux | 0 < 6.7 | unaffected |
| Linux | Linux | 6.11.11 <= 6.11.* | unaffected |
| Linux | Linux | 6.12.2 <= 6.12.* | unaffected |
| Linux | Linux | 6.13 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
References
- https://git.kernel.org/stable/c/3c49e1084a5df99807fc43dd318c491e6cbaa168
- https://git.kernel.org/stable/c/b1af648f0d610665c956ea4604d9f797e5c7e991
- https://git.kernel.org/stable/c/332fa4a802b16ccb727199da685294f85f9880cb
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.