Raw Data Copy Vulnerability in Linux Kernel
CVE-2024-46740

7.8HIGH

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 18 September 2024

What is CVE-2024-46740?

A vulnerability in the Linux kernel related to binder objects has been identified, arising from improper handling of raw data during transactions. When copying individual binder objects into the target buffer, there is a lack of out-of-bounds checks that allows raw data exceeding the designated area to overwrite critical offsets. This overwriting can corrupt the offsets that are essential for correctly managing the objects involved in the transaction. As a result, when the system attempts to unwind these corrupted objects, it may lead to unexpected behavior, including the release of nodes that should still be in use. This premature release can trigger dangling pointers and cause subsequent access violations, significantly compromising system stability and security.

Affected Version(s)

Linux c056a6ba35e00ae943e377eb09abd77a6915b31a < 5a32bfd23022ffa7e152f273fa3fa29befb7d929

Linux 23e9d815fad84c1bee3742a8de4bd39510435362 < 3a8154bb4ab4a01390a3abf1e6afac296e037da4

Linux 7a9ad4aceb0226b391c9d3b8e4ac2e7d438b6bde

References

https://git.kernel.org/stable/c/5a32bfd23022ffa7e152f273f...

https://git.kernel.org/stable/c/3a8154bb4ab4a01390a3abf1e...

https://git.kernel.org/stable/c/eef79854a04feac5b861f94d7...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 18, 2024
Vulnerability Reserved
Sep 11, 2024