Linux · Linux Kernel · CVE-2024-26766
Name of the Vulnerable Software and Affected Versions:
Linux kernel (affected versions not specified)
Description:
The vulnerability is related to an off-by-one error in the IB/hfi1 component of the Linux kernel, which can cause the `descs` array to overflow. This results in crashes that can be easily reproduced by the `sendmsg` system call. The issue is caused by an incorrect commit that introduced another error, leading to further crashes. The fix involves using the correct expression in ` pad sdma tx descs()` to test the need to expand the descriptor array.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.