Vulnerabilities > CVE-2024-35905 - Improper Validation of Array Index vulnerability in multiple products

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

linux

debian

CWE-129

NVD

Published: 2024-05-19

Updated: 2024-12-30

Summary

In the Linux kernel, the following vulnerability has been resolved: bpf: Protect against int overflow for stack access size This patch re-introduces protection against the size of access to stack memory being negative; the access size can appear negative as a result of overflowing its signed int representation. This should not actually happen, as there are other protections along the way, but we should protect against it anyway. One code path was missing such protections (fixed in the previous patch in the series), causing out-of-bounds array accesses in check_stack_range_initialized(). This patch causes the verification of a program with such a non-sensical access size to fail. This check used to exist in a more indirect way, but was inadvertendly removed in a833a17aeac7.

Vulnerable Configurations

Part	Description	Count
OS	Linux Linux Linux Kernel 6.9 Linux Linux Kernel 6.7.2 Linux Linux Kernel 6.7.3 Linux Linux Kernel 6.7.4 Linux Linux Kernel 6.7.5 Linux Linux Kernel 6.7.6 Linux Linux Kernel 6.7.7 Linux Linux Kernel 6.7.8 Linux Linux Kernel 6.7.9 Linux Linux Kernel 6.7.10 Linux Linux Kernel 6.7.11 Linux Linux Kernel 6.7.12 Linux Linux Kernel 6.8 Linux Linux Kernel 6.8.1 Linux Linux Kernel 6.8.2 Linux Linux Kernel 6.8.3 Linux Linux Kernel 6.8.4 Linux Linux Kernel 6.6.14 Linux Linux Kernel 6.6.15 Linux Linux Kernel 6.6.16 Linux Linux Kernel 6.6.17 Linux Linux Kernel 6.6.18 Linux Linux Kernel 6.6.19 Linux Linux Kernel 6.6.20 Linux Linux Kernel 6.6.21 Linux Linux Kernel 6.6.22 Linux Linux Kernel 6.6.23 Linux Linux Kernel 6.6.24 Linux Linux Kernel 6.6.25 Linux Linux Kernel 6.1.75 Linux Linux Kernel 6.1.76 Linux Linux Kernel 6.1.77 Linux Linux Kernel 6.1.78 Linux Linux Kernel 6.1.79 Linux Linux Kernel 6.1.80 Linux Linux Kernel 6.1.81 Linux Linux Kernel 6.1.82 Linux Linux Kernel 6.1.83 Linux Linux Kernel 6.1.84 Linux Linux Kernel 5.15.148 Linux Linux Kernel 5.15.149 Linux Linux Kernel 5.15.150 Linux Linux Kernel 5.15.151 Linux Linux Kernel 5.15.152 Linux Linux Kernel 5.15.153 Linux Linux Kernel 5.10.209 Linux Linux Kernel 5.10.210 Linux Linux Kernel 5.10.211 Linux Linux Kernel 5.10.212 Linux Linux Kernel 5.10.213 Linux Linux Kernel 5.10.214	55
OS	Debian Debian Debian Linux 10.0	1

Common Weakness Enumeration (CWE)

CWE-129 - Improper Validation of Array Index

Common Attack Pattern Enumeration and Classification (CAPEC)

Overflow Buffers
Buffer Overflow attacks target improper or missing bounds checking on buffer operations, typically triggered by input injected by an attacker. As a consequence, an attacker is able to write past the boundaries of allocated buffer regions in memory, causing a program crash or potentially redirection of execution as per the attackers' choice.

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Common Attack Pattern Enumeration and Classification (CAPEC)

References