CVE-2024-57973
MEDIUMLinux Kernel - Integer Overflow in RDMA cxgb4 via gl->tot_len Addition
Title source: llmDescription
In the Linux kernel, the following vulnerability has been resolved: rdma/cxgb4: Prevent potential integer overflow on 32bit The "gl->tot_len" variable is controlled by the user. It comes from process_responses(). On 32bit systems, the "gl->tot_len + sizeof(struct cpl_pass_accept_req) + sizeof(struct rss_header)" addition could have an integer wrapping bug. Use size_add() to prevent this.
References (10)
Core 10
Core References
Scores
CVSS v3
5.5
EPSS
0.0022
EPSS Percentile
12.8%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-190
Status
published
Products (26)
linux/Kernel
3.8.0 - 5.4.291linux
linux/Kernel
5.11.0 - 5.15.179linux
linux/Kernel
5.16.0 - 6.1.129linux
linux/Kernel
5.5.0 - 5.10.235linux
linux/Kernel
6.13.0 - 6.13.2linux
linux/Kernel
6.2.0 - 6.6.76linux
linux/Kernel
6.7.0 - 6.12.13linux
Linux/Linux
< 3.8
Linux/Linux
1cab775c3e75f1250c965feafd061d696df36e53 - 2b759f78b83221f4a1cae3aeb20b500e375f3ee6
Linux/Linux
1cab775c3e75f1250c965feafd061d696df36e53 - 4422f452d028850b9cc4fd8f1cf45a8ff91855eb
... and 16 more
Published
Feb 27, 2025
Tracked Since
Feb 18, 2026