CVE-2024-25739

2024-02-1200:00:00

ubuntu.com

linux kernel

vtbl.c

allocation mishandle

crash

missing check

bugzilla redhat

bugzilla suse

syzkaller

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

5.3

Confidence

High

EPSS

Percentile

5.1%

JSON

create_empty_lvol in drivers/mtd/ubi/vtbl.c in the Linux kernel through
6.7.4 can attempt to allocate zero bytes, and crash, because of a missing
check for ubi->leb_size.

Bugs

Notes

Author	Note
eslerm	Syzkaller
sbeattie	proposed fix is “ubi: Check for too small LEB size in VTBL code”

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchlinux< 4.15.0-227.239UNKNOWN
ubuntu20.04noarchlinux< 5.4.0-189.209UNKNOWN
ubuntu22.04noarchlinux< 5.15.0-116.126UNKNOWN
ubuntu24.04noarchlinux< 6.8.0-35.35UNKNOWN
ubuntu16.04noarchlinux< anyUNKNOWN
ubuntu18.04noarchlinux-aws< 4.15.0-1170.183UNKNOWN
ubuntu20.04noarchlinux-aws< 5.4.0-1128.138UNKNOWN
ubuntu22.04noarchlinux-aws< 5.15.0-1065.71UNKNOWN
ubuntu24.04noarchlinux-aws< 6.8.0-1009.9UNKNOWN
ubuntu14.04noarchlinux-aws< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	18.04	noarch	linux	< 4.15.0-227.239	UNKNOWN
ubuntu	20.04	noarch	linux	< 5.4.0-189.209	UNKNOWN
ubuntu	22.04	noarch	linux	< 5.15.0-116.126	UNKNOWN
ubuntu	24.04	noarch	linux	< 6.8.0-35.35	UNKNOWN
ubuntu	16.04	noarch	linux	< any	UNKNOWN
ubuntu	18.04	noarch	linux-aws	< 4.15.0-1170.183	UNKNOWN
ubuntu	20.04	noarch	linux-aws	< 5.4.0-1128.138	UNKNOWN
ubuntu	22.04	noarch	linux-aws	< 5.15.0-1065.71	UNKNOWN
ubuntu	24.04	noarch	linux-aws	< 6.8.0-1009.9	UNKNOWN
ubuntu	14.04	noarch	linux-aws	< any	UNKNOWN