CVE-2024-53197

Linux Kernel Out-of-Bounds Access Vulnerability

Severity Score

7.8

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

Yes

*KEV

Decision

Act

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices A bogus device can provide a bNumConfigurations value that exceeds the
initial value used in usb_get_configuration for allocating dev->config. This can lead to out-of-bounds accesses later, e.g. in
usb_destroy_configuration.

A vulnerability was found in the Linux kernel's USB Audio driver. This flaw allows an attacker with physical access to the system to use a malicious USB device to gain additional access. This is possible by manipulating system memory, potentially escalating privileges, or executing arbitrary code.

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices A bogus device can provide a bNumConfigurations value that exceeds the initial value used in usb_get_configuration for allocating dev->config. This can lead to out-of-bounds accesses later, e.g. in usb_destroy_configuration.

Ziming Zhang discovered that the DRM driver for VMware Virtual GPU did not properly handle certain error conditions, leading to a NULL pointer dereference. A local attacker could possibly trigger this vulnerability to cause a denial of service. Ye Zhang and Nicolas Wu discovered that the io_uring subsystem in the Linux kernel did not properly handle locking for rings with IOPOLL, leading to a double-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code.

Linux Kernel contains an out-of-bounds access vulnerability in the USB-audio driver that allows an attacker with physical access to the system to use a malicious USB device to potentially manipulate system memory, escalate privileges, or execute arbitrary code.

*Credits: N/A

CVSS Scores

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Local

Attack Complexity

High

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

Low

Availability

Low

Attack Vector

Local

Attack Complexity

High

Authentication

Single

Confidentiality

Complete

Integrity

Partial

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:Act

Exploitation

Active

Automatable

Tech. Impact

Total

* Organization's Worst-case Scenario

Timeline

2024-11-19 CVE Reserved
2024-12-27 CVE Published
2025-04-09 Exploited in Wild
2025-04-30 KEV Due Date
2025-05-04 CVE Updated
2025-05-18 EPSS Updated
---------- First Exploit

CWE

CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CWE-787: Out-of-bounds Write

CAPEC

References (12)

URL	Tag	Source
https://git.kernel.org/stable/c/1da177e4c3f41524e886b7f1b8a0c1fc7321cac2	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/0b4ea4bfe16566b84645ded1403756a2dc4e0f19	2024-12-05
https://git.kernel.org/stable/c/9b8460a2a7ce478e0b625af7c56d444dc24190f7	2024-12-14
https://git.kernel.org/stable/c/62dc01c83fa71e10446ee4c31e0e3d5d1291e865	2024-12-14
https://git.kernel.org/stable/c/9887d859cd60727432a01564e8f91302d361b72b	2024-12-14
https://git.kernel.org/stable/c/920a369a9f014f10ec282fd298d0666129379f1b	2024-12-14
https://git.kernel.org/stable/c/b8f8b81dabe52b413fe9e062e8a852c48dd0680d	2024-12-09
https://git.kernel.org/stable/c/379d3b9799d9da953391e973b934764f01e03960	2024-12-05
https://git.kernel.org/stable/c/b521b53ac6eb04e41c03f46f7fe452e4d8e9bcca	2024-12-05
https://git.kernel.org/stable/c/b909df18ce2a998afef81d58bbd1a05dc0788c40	2024-11-20

URL	Date	SRC
https://access.redhat.com/security/cve/CVE-2024-53197	2025-04-10
https://bugzilla.redhat.com/show_bug.cgi?id=2334412	2025-04-10

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 2.6.12 < 4.19.325 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.12 < 4.19.325"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 2.6.12 < 5.4.287 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.12 < 5.4.287"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 2.6.12 < 5.10.231 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.12 < 5.10.231"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 2.6.12 < 5.15.174 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.12 < 5.15.174"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 2.6.12 < 6.1.120 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.12 < 6.1.120"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 2.6.12 < 6.6.64 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.12 < 6.6.64"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 2.6.12 < 6.11.11 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.12 < 6.11.11"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 2.6.12 < 6.12.2 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.12 < 6.12.2"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 2.6.12 < 6.13 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.12 < 6.13"		en		Affected