CVE-2024-26678

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to the x86/efistub in the Linux kernel, where the .compat section, a dummy PE section containing the address of the 32-bit entrypoint of the 64-bit kernel image, is placed at the end of the memory view of the image. This placement violates the PE/COFF spec, as it does not follow a monotonically increasing manner without leaving gaps, which can cause some PE loaders to reject the images. The Tianocore reference implementation and most EFI loaders will work correctly, but reorganizing the sections is necessary to avoid this issue, resulting in a slight padding overhead that can be avoided by disabling CONFIG EFI MIXED.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.