PT-2024-28063 · Linux+10 · Linux Kernel+10
Published
2024-05-07
·
Updated
2026-05-26
·
CVE-2024-38540
CVSS v3.1
4.4
Medium
| Vector | AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions prior to 6.9.0-rc6+
Description
A vulnerability in the Linux kernel has been resolved, specifically in the bnxt re module. The issue is related to undefined behavior when the
bnxt qplib alloc init hwq function is called with hwq attr->aux depth != 0 and hwq attr->aux stride == 0. This triggers a call to roundup pow of two(hwq attr->aux stride), which is documented as undefined for 0. The vulnerability was detected by UBSAN (Undefined Behavior Sanitizer).Recommendations
To resolve this issue, update the Linux kernel to a version that includes the fix for this vulnerability. Specifically, update to a version later than 6.9.0-rc6+.
Note: The provided input descriptions do not specify the exact fixed version, but it is mentioned that the issue is resolved in version 6.9.0-rc6+. Therefore, updating to a version later than this should resolve the issue.
Exploit
Fix
Out of bounds Read
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Almalinux
Astra Linux
Centos
Debian
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu