PT-2024-1989 · Linux+10 · Linux Kernel+10

Piotr Zakowski

·

Published

2024-02-14

·

Updated

2025-09-29

·

CVE-2024-26593

CVSS v3.1

7.1

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The issue is related to the i2c: i801 driver in the Linux kernel, where the block buffer index is not reset twice for block process call transactions as required by Intel datasheets. This causes the wrong portion of the block buffer to be read. The vulnerability may allow an attacker to cause a denial of service.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-125CWE-118

Related Identifiers

ALSA-2024:2394
ALSA-2024:3618
ALSA-2024:3627
ALSA-2024_2394
ALSA-2025_16880
ALT-PU-2024-14046
ALT-PU-2024-3457
ALT-PU-2024-6818
BDU:2024-01832
CESA-2024_3618
CESA-2024_3627
CVE-2024-26593
DLA-3842-1
DSA-5658-1
DSA-5681-1
INFSA-2024_2394
INFSA-2024_3618
INFSA-2024_3627
OESA-2024-1394
OESA-2024-1395
OESA-2024-1396
OESA-2024-1397
OPENSUSE-SU-2024_0857-1
OPENSUSE-SU-2024_0858-1
RHSA-2024:2394
RHSA-2024:3618
RHSA-2024:3627
RHSA-2024_2394
RHSA-2024_3618
RHSA-2024_3627
RLSA-2024:3618
RLSA-2024:3627
SUSE-SU-2024:0855-1
SUSE-SU-2024:0856-1
SUSE-SU-2024:0857-1
SUSE-SU-2024:0858-1
SUSE-SU-2024:0900-1
SUSE-SU-2024:0900-2
SUSE-SU-2024:0910-1
SUSE-SU-2024:0926-1
SUSE-SU-2024:0977-1
USN-6766-1
USN-6766-2
USN-6766-3
USN-6767-1
USN-6767-2
USN-6795-1
USN-6828-1
USN-6895-1
USN-6895-2
USN-6895-3
USN-6895-4
USN-6900-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu