CVE-2024-38542

HIGH

Linux Kernel - Buffer Overflow

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: RDMA/mana_ib: boundary check before installing cq callbacks Add a boundary check inside mana_ib_install_cq_cb to prevent index overflow.

References (3)

[Patch] https://git.kernel.org/stable/c/168f6fbde0eabd71d1f4133df7d001a950b96977

[Patch] https://git.kernel.org/stable/c/f12afddfb142587d786df9e3cc4862190d3e2ec8

[Patch] https://git.kernel.org/stable/c/f79edef79b6a2161f4124112f9b0c46891bb0b74

Scores

CVSS v3 7.1

EPSS 0.0002

EPSS Percentile 3.5%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-129

Status published

Products (3)

linux/Kernel < 6.8.12linux

linux/Kernel 6.9.0 - 6.9.3linux

linux/linux_kernel 6.8.2 - 6.8.12

Published Jun 19, 2024

Tracked Since Feb 18, 2026