CVE-2024-35813

mmc: core: Avoid negative index with array access

Severity Score

5.5

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved: mmc: core: Avoid negative index with array access Commit 4d0c8d0aef63 ("mmc: core: Use mrq.sbc in close-ended ffu") assigns
prev_idata = idatas[i - 1], but doesn't check that the iterator i is
greater than zero. Let's fix this by adding a check.

En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: mmc: core: evitar índice negativo con acceso a matriz Commit 4d0c8d0aef63 ("mmc: core: usar mrq.sbc en ffu cerrado") asigna prev_idata = idatas[i - 1] , pero no comprueba que el iterador i sea mayor que cero. Arreglemos esto agregando una comprobación.

In the Linux kernel, the following vulnerability has been resolved: mmc: core: Avoid negative index with array access Commit 4d0c8d0aef63 ("mmc: core: Use mrq.sbc in close-ended ffu") assigns prev_idata = idatas[i - 1], but doesn't check that the iterator i is greater than zero. Let's fix this by adding a check.

Ziming Zhang discovered that the DRM driver for VMware Virtual GPU did not properly handle certain error conditions, leading to a NULL pointer dereference. A local attacker could possibly trigger this vulnerability to cause a denial of service. Zheng Wang discovered that the Broadcom FullMAC WLAN driver in the Linux kernel contained a race condition during device removal, leading to a use- after-free vulnerability. A physically proximate attacker could possibly use this to cause a denial of service.

*Credits: N/A

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Attack Vector

Local

Attack Complexity

Low

Authentication

Single

Confidentiality

None

Integrity

None

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-05-17 CVE Reserved
2024-05-17 CVE Published
2024-12-19 CVE Updated
2025-03-30 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (16)

URL	Tag	Source
https://git.kernel.org/stable/c/f49f9e802785291149bdc9c824414de4604226b4	Vuln. Introduced
https://git.kernel.org/stable/c/59020bf0999ff7da8aedcd00ef8f0d75d93b6d20	Vuln. Introduced
https://git.kernel.org/stable/c/50b8b7a22e90bab9f1949b64a88ff17ab10913ec	Vuln. Introduced
https://git.kernel.org/stable/c/c4edcd134bb72b3b0acc884612d624e48c9d057f	Vuln. Introduced
https://git.kernel.org/stable/c/1653a8102868264f3488c298a9f20af2add9a288	Vuln. Introduced
https://git.kernel.org/stable/c/eed9119f8f8e8fbf225c08abdbb58597fba807e0	Vuln. Introduced
https://git.kernel.org/stable/c/4d0c8d0aef6355660b6775d57ccd5d4ea2e15802	Vuln. Introduced
https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/b9a7339ae403035ffe7fc37cb034b36947910f68	2024-04-13
https://git.kernel.org/stable/c/2b539c88940e22494da80a93ee1c5a28bbad10f6	2024-04-13
https://git.kernel.org/stable/c/81b8645feca08a54c7c4bf36e7b176f4983b2f28	2024-04-10
https://git.kernel.org/stable/c/ad9cc5e9e53ab94aa0c7ac65d43be7eb208dcb55	2024-04-03
https://git.kernel.org/stable/c/4466677dcabe2d70de6aa3d4bd4a4fafa94a71f2	2024-04-03
https://git.kernel.org/stable/c/064db53f9023a2d5877a2d12de6bc27995f6ca56	2024-04-03
https://git.kernel.org/stable/c/7d0e8a6147550aa058fa6ade8583ad252aa61304	2024-04-03
https://git.kernel.org/stable/c/cf55a7acd1ed38afe43bba1c8a0935b51d1dc014	2024-03-25

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.4.269 < 5.4.274 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.4.269 < 5.4.274"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.10.210 < 5.10.215 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.10.210 < 5.10.215"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.15.149 < 5.15.154 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.15.149 < 5.15.154"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.1.76 < 6.1.84 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.1.76 < 6.1.84"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.6.15 < 6.6.24 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.6.15 < 6.6.24"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.7.3 < 6.7.12 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.7.3 < 6.7.12"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.8 < 6.8.3 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.8 < 6.8.3"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.8 < 6.9 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.8 < 6.9"		en		Affected