CVE-2024-35848

eeprom: at24: fix memory corruption race condition

Severity Score

5.5

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved:

eeprom: at24: fix memory corruption race condition

If the eeprom is not accessible, an nvmem device will be registered, the
read will fail, and the device will be torn down. If another driver
accesses the nvmem device after the teardown, it will reference
invalid memory.

Move the failure point before registering the nvmem device.

En el kernel de Linux, se resolvió la siguiente vulnerabilidad: eeprom: at24: corrige la condición de ejecución por corrupción de memoria. Si no se puede acceder a la eeprom, se registrará un dispositivo nvmem, la lectura fallará y el dispositivo se apagará. Si otro controlador accede al dispositivo nvmem después del desmontaje, hará referencia a una memoria no válida. Mueva el punto de fallo antes de registrar el dispositivo nvmem.

*Credits: N/A

CVSS Scores

Red Hatv3.1 5.5

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-05-17 CVE Reserved
2024-05-17 CVE Published
2024-05-18 EPSS Updated
2024-08-02 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (10)

URL	Tag	Source
https://git.kernel.org/stable/c/b20eb4c1f0261eebe6e1b9221c0d6e4048837778	Vuln. Introduced
https://lists.debian.org/debian-lts-announce/2024/06/msg00019.html

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/c850f71fca09ea41800ed55905980063d17e01da	2024-05-17
https://git.kernel.org/stable/c/26d32bec4c6d255a03762f33c637bfa3718be15a	2024-05-17
https://git.kernel.org/stable/c/c43e5028f5a35331eb25017f5ff6cc21735005c6	2024-05-17
https://git.kernel.org/stable/c/2af84c46b9b8f2d6c0f88d09ee5c849ae1734676	2024-05-17
https://git.kernel.org/stable/c/6d8b56ec0c8f30d5657382f47344a32569f7a9bc	2024-05-02
https://git.kernel.org/stable/c/f42c97027fb75776e2e9358d16bf4a99aeb04cf2	2024-04-23

URL	Date	SRC
https://access.redhat.com/security/cve/CVE-2024-35848	2024-08-15
https://bugzilla.redhat.com/show_bug.cgi?id=2281265	2024-08-15

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.3 < 5.10.217 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.3 < 5.10.217"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.3 < 5.15.159 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.3 < 5.15.159"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.3 < 6.1.91 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.3 < 6.1.91"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.3 < 6.6.31 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.3 < 6.6.31"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.3 < 6.8.9 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.3 < 6.8.9"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.3 < 6.9 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.3 < 6.9"		en		Affected