Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2024-26885
HistoryApr 17, 2024 - 12:00 a.m.

CVE-2024-26885

2024-04-1700:00:00
ubuntu.com
ubuntu.com
13
linux kernel
vulnerability resolved
devmap code
overflow check
32-bit arches
arm32
syzbot
crash
update operation

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.8

Confidence

High

EPSS

0

Percentile

5.1%

JSON

In the Linux kernel, the following vulnerability has been resolved: bpf:
Fix DEVMAP_HASH overflow check on 32-bit arches The devmap code allocates a
number hash buckets equal to the next power of two of the max_entries value
provided when creating the map. When rounding up to the next power of two,
the 32-bit variable storing the number of buckets can overflow, and the
code checks for overflow by checking if the truncated 32-bit value is equal
to 0. However, on 32-bit arches the rounding up itself can overflow mid-way
through, because it ends up doing a left-shift of 32 bits on an unsigned
long value. If the size of an unsigned long is four bytes, this is
undefined behaviour, so there is no guarantee that we’ll end up with a nice
and tidy 0-value at the end. Syzbot managed to turn this into a crash on
arm32 by creating a DEVMAP_HASH with max_entries > 0x80000000 and then
trying to update it. Fix this by moving the overflow check to before the
rounding up operation.

References

Related

vulnrichment 1
nvd 1
cbl_mariner 1
cvelist 1
debiancve 1
redhatcve 1
cve 1
redos 1
openvas 28
nessus 31
osv 18
ubuntu 15
debian 1
vulnrichment
vulnrichment
CVE-2024-26885 bpf: Fix DEVMAP_HASH overflow check on 32-bit arches
2024-04-17 10:27:40
nvd
nvd
CVE-2024-26885
2024-04-17 11:15:10
cbl_mariner
cbl_mariner
CVE-2024-26885 affecting package kernel for versions less than 6.6.29.1-3
2024-05-17 21:38:35
cvelist
cvelist
CVE-2024-26885 bpf: Fix DEVMAP_HASH overflow check on 32-bit arches
2024-04-17 10:27:40
debiancve
debiancve
CVE-2024-26885
2024-04-17 11:15:10
redhatcve
redhatcve
CVE-2024-26885
2024-04-17 18:28:03
cve
cve
CVE-2024-26885
2024-04-17 11:15:10
redos
redos
ROS-20240821-02
2024-08-21 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-2308)
2024-09-03 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-2216)
2024-08-21 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-2328)
2024-09-03 00:00:00
nessus
nessus
EulerOS 2.0 SP12 : kernel (EulerOS-SA-2024-2240)
2024-08-20 00:00:00
EulerOS 2.0 SP12 : kernel (EulerOS-SA-2024-2216)
2024-08-21 00:00:00
EulerOS Virtualization 2.12.1 : kernel (EulerOS-SA-2024-2308)
2024-09-03 00:00:00
osv
osv
linux-gke, linux-ibm, linux-intel-iotg, linux-oracle vulnerabilities
2024-06-07 22:51:46
linux-nvidia vulnerabilities
2024-06-11 20:05:19
linux-ibm-5.15 vulnerabilities
2024-07-10 21:06:59
ubuntu
ubuntu
Linux kernel (HWE) vulnerabilities
2024-07-04 00:00:00
Linux kernel (IBM) vulnerabilities
2024-07-10 00:00:00
Linux kernel vulnerabilities
2024-06-07 00:00:00
debian
debian
[SECURITY] [DSA 5681-1] linux security update
2024-05-06 18:31:39

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.8

Confidence

High

EPSS

0

Percentile

5.1%

JSON
Related for UB:CVE-2024-26885
vulnrichment1nvd1cbl_mariner1cvelist1debiancve1redhatcve1cve1redos1openvas28nessus31osv18ubuntu15debian1