PT-2024-34043 · Linux+9 · Linux Kernel+9

Published

2024-10-08

·

Updated

2025-10-03

·

CVE-2024-50208

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.6.61
Description: A bug in the Linux kernel has been resolved, specifically in the RDMA/bnxt re module, which fixes a bug while setting up Level-2 PBL pages. This bug could lead to memory corruption when setting up Level-2 PBL pages for non-MR resources when num pages is greater than 256K. The current logic assumes multiple pages, resulting in invalid memory access after 256K PBL entries in the PDE.
Recommendations: For Linux kernel versions prior to 6.6.61, update to version 6.6.61 or later to resolve the issue. As a temporary workaround, consider restricting access to the RDMA/bnxt re module until a patch is available. Avoid using the num pages variable with values greater than 256K in the affected API endpoints until the issue is resolved.

Exploit

Fix

Out of bounds Read

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-125CWE-119

Related Identifiers

ALSA-2025:0059
ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_16880
ALT-PU-2024-16172
ALT-PU-2024-17099
ALT-PU-2024-17211
ALT-PU-2025-12647
AZL-53292
AZL-53337
BDU:2025-03307
CVE-2024-50208
DLA-4008-1
DLA-4075-1
INFSA-2025_0059
MGASA-2024-0368
MGASA-2024-0369
OESA-2024-2492
OESA-2024-2518
OESA-2024-2519
OESA-2024-2521
OPENSUSE-SU-2024:14500-1
OPENSUSE-SU-2024_4131-1
OPENSUSE-SU-2024_4313-1
OPENSUSE-SU-2024_4314-1
OPENSUSE-SU-2024_4315-1
OPENSUSE-SU-2024_4316-1
OPENSUSE-SU-2024_4376-1
OPENSUSE-SU-2025:14705-1
RHSA-2025:0059
RHSA-2025_0059
SUSE-SU-2024:4131-1
SUSE-SU-2024:4313-1
SUSE-SU-2024:4314-1
SUSE-SU-2024:4315-1
SUSE-SU-2024:4316-1
SUSE-SU-2024:4317-1
SUSE-SU-2024:4318-1
SUSE-SU-2024:4345-1
SUSE-SU-2024:4364-1
SUSE-SU-2024:4376-1
SUSE-SU-2024:4387-1
SUSE-SU-2024:4388-1
SUSE-SU-2025:02388-1
SUSE-SU-2025:02389-1
SUSE-SU-2025:02390-1
SUSE-SU-2025:02398-1
SUSE-SU-2025:02400-1
SUSE-SU-2025:02403-1
SUSE-SU-2025:02411-1
SUSE-SU-2025:02416-1
SUSE-SU-2025:02419-1
SUSE-SU-2025:02420-1
SUSE-SU-2025:02428-1
SUSE-SU-2025:02434-1
SUSE-SU-2025:02436-1
SUSE-SU-2025:02440-1
SUSE-SU-2025:02446-1
SUSE-SU-2025:02449-1
SUSE-SU-2025:02455-1
SUSE-SU-2025:02459-1
SUSE-SU-2025:20163-1
SUSE-SU-2025:20164-1
SUSE-SU-2025:20246-1
SUSE-SU-2025:20247-1
SUSE-SU-2025:20517-1
SUSE-SU-2025:20518-1
SUSE-SU-2025:20525-1
SUSE-SU-2025:20526-1
SUSE-SU-2025:20540-1
SUSE-SU-2025:20544-1
USN-7276-1
USN-7277-1
USN-7288-1
USN-7288-2
USN-7289-1
USN-7289-2
USN-7289-3
USN-7289-4
USN-7291-1
USN-7305-1
USN-7308-1
USN-7310-1
USN-7331-1
USN-7388-1
USN-7389-1
USN-7390-1
USN-7449-1
USN-7449-2
USN-7450-1
USN-7451-1
USN-7452-1
USN-7453-1
USN-7458-1
USN-7468-1
USN-7523-1
USN-7524-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Hat
Red Os
Suse
Ubuntu