Informazioni sul CVE-2024-41096
PCI/MSI: Fix UAF in msi_capability_init
CWE ID: N/A
Base Score (CVSS): N/A
CVE: CVE-2024-41096
Descrizione: In the Linux kernel, a vulnerability has been resolved regarding PCI/MSI. The following issue was reported by KFENCE: KFENCE reported a use-after-free error in `use-after-free read` within `__pci_enable_msi_range`. The bug manifests in the following: * **Bug Report:** BUG: KFENCE: use-after-free read in `__pci_enable_msi_range+0x2c0/0x488` * **Details:** The bug occurs at `__pci_enable_msi_range+0x2c0/0x488`. * **Relevant Code:** `__pci_enable_msi_range+0x2c0/0x488` * **Related Memory:** `pci_alloc_irq_vectors_affinity+0xec/0x14c` * **Related Memory:** `pci_alloc_irq_vectors+0x18/0x28` The issue is observed at 0x0000000024629571 (in kfence-#12): 104 bytes, cache=kmalloc-128. The `kfence-#12` task allocated 104 bytes of memory, and it was used by task 81 on CPU 7 at 10.808142s. The `__pci_enable_msi_range` function was freed by task 81 on CPU 7 at 10.811436s. This failure propagates back to `msi_capability_init()` which accesses the descriptor for unmasking in the error exit path. The solution is to copy the descriptor and use the copy for the error exit path.
Vettore di attacco
Punteggio CVSS
Il CVSS è un sistema di valutazione che misura la gravità di una vulnerabilità informatica considerando fattori come l’impatto potenziale, la probabilità di attacco e la facilità di esecuzione.
Riassunto: .
Dettaglio del Vettore
| Metrica | Valore | Significato | Descrizione |
|---|
Riferimenti esterni
- https://git.kernel.org/stable/c/0ae40b2d0a5de6b045504098e365d4fdff5bbeba
- https://git.kernel.org/stable/c/ff1121d2214b794dc1772081f27bdd90721a84bc
- https://git.kernel.org/stable/c/45fc8d20e0768ab0a0ad054081d0f68aa3c83976
- https://git.kernel.org/stable/c/9eee5330656bf92f51cb1f09b2dc9f8cf975b3d1
Prodotti interessati
- Linux – Linux
- Linux – Linux
Relazioni con altri prodotti
Produttore:Linux
Prodotto: Linux
Anno: 2024
CWE:
CVSS: 0.0