CVE-2024-35826

block: Fix page refcounts for unaligned buffers in __bio_release_pages()

Severity Score

7.0

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved: block: Fix page refcounts for unaligned buffers in __bio_release_pages() Fix an incorrect number of pages being released for buffers that do not
start at the beginning of a page.

En el kernel de Linux, se resolvió la siguiente vulnerabilidad: bloquear: corregidos recuentos de páginas para buffers no alineados en __bio_release_pages() Corrige un número incorrecto de páginas que se liberan para buffers que no comienzan al principio de una página.

Ziming Zhang discovered that the DRM driver for VMware Virtual GPU did not properly handle certain error conditions, leading to a NULL pointer dereference. A local attacker could possibly trigger this vulnerability to cause a denial of service. Zheng Wang discovered that the Broadcom FullMAC WLAN driver in the Linux kernel contained a race condition during device removal, leading to a use- after-free vulnerability. A physically proximate attacker could possibly use this to cause a denial of service.

*Credits: N/A

Attack Vector

Local

Attack Complexity

High

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Local

Attack Complexity

Medium

Authentication

None

Confidentiality

Complete

Integrity

Complete

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-05-17 CVE Reserved
2024-05-17 CVE Published
2024-12-19 CVE Updated
2025-03-30 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (13)

URL	Tag	Source
https://git.kernel.org/stable/c/9025ee1079291fac79c7fcc20086e9f0015f86f4	Vuln. Introduced
https://git.kernel.org/stable/c/8955324cc9f93304efe163120038b38c36c09fba	Vuln. Introduced
https://git.kernel.org/stable/c/d198c15d181cc9d580f0f2c25150b077d1d49c1a	Vuln. Introduced
https://git.kernel.org/stable/c/1b151e2435fc3a9b10c8946c6aebe9f3e1938c55	Vuln. Introduced
https://git.kernel.org/stable/c/d2d0b95ca1b5fefa3deed444a803c9f809db66cf	Vuln. Introduced
https://git.kernel.org/stable/c/3f4e660144edb053886fc80f587a71ad7afc2ad6	Vuln. Introduced
https://git.kernel.org/stable/c/bfc0647791d7a8f3e178a896a26c4ef7794876b7	Vuln. Introduced
https://git.kernel.org/stable/c/0f2dca516541032fe47a1236c852f58edc662795	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/242006996d15f5ca62e22f8c7de077d9c4a8f367	2024-04-03
https://git.kernel.org/stable/c/7d3765550374f71248c55e6206ea1d6fd4537e65	2024-04-03
https://git.kernel.org/stable/c/ecbd9ced84dd655a8f4cd49d2aad0e80dbf6bf35	2024-04-03
https://git.kernel.org/stable/c/c9d3d2fbde9b8197bce88abcbe8ee8e713ffe7c2	2024-04-03
https://git.kernel.org/stable/c/38b43539d64b2fa020b3b9a752a986769f87f7a6	2024-03-06

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.1.75 < 6.1.84 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.1.75 < 6.1.84"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.6.14 < 6.6.24 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.6.14 < 6.6.24"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.7.2 < 6.7.12 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.7.2 < 6.7.12"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.8 < 6.8.3 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.8 < 6.8.3"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.8 < 6.9 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.8 < 6.9"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				4.19.307 Search vendor "Linux" for product "Linux Kernel" and version "4.19.307"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				5.4.269 Search vendor "Linux" for product "Linux Kernel" and version "5.4.269"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				5.10.210 Search vendor "Linux" for product "Linux Kernel" and version "5.10.210"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				5.15.148 Search vendor "Linux" for product "Linux Kernel" and version "5.15.148"		en		Affected