CVE-2024-26828: cifs: fix underflow in parse_server_interfaces()
First published: Wed Apr 17 2024(Updated: )
In the Linux kernel, the following vulnerability has been resolved: cifs: fix underflow in parse_server_interfaces() In this loop, we step through the buffer and after each item we check if the size_left is greater than the minimum size we need. However, the problem is that "bytes_left" is type ssize_t while sizeof() is type size_t. That means that because of type promotion, the comparison is done as an unsigned and if we have negative bytes left the loop continues instead of ending.
Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67 416baaa9-dc9f-4396-8d5f-8c081fb06d67
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/kernel | <6.1.79 | 6.1.79 |
| redhat/kernel | <6.6.18 | 6.6.18 |
| redhat/kernel | <6.7.6 | 6.7.6 |
| redhat/kernel | <6.8 | 6.8 |
| Linux Kernel | >=4.18<6.1.79 | |
| Linux Kernel | >=6.2<6.6.18 | |
| Linux Kernel | >=6.7<6.7.6 | |
| Linux Kernel | =6.8-rc1 | |
| Linux Kernel | =6.8-rc2 | |
| Linux Kernel | =6.8-rc3 | |
| Linux Kernel | =6.8-rc4 | |
| debian/linux | <=5.10.223-1<=5.10.234-1 | 6.1.129-1 6.1.135-1 6.12.22-1 6.12.25-1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://git.kernel.org/stable/c/7190353835b4a219abb70f90b06cdcae97f11512
- https://git.kernel.org/stable/c/cffe487026be13eaf37ea28b783d9638ab147204
- https://git.kernel.org/stable/c/df2af9fdbc4ddde18a3371c4ca1a86596e8be301
- https://git.kernel.org/stable/c/f7ff1c89fb6e9610d2b01c1821727729e6609308
- https://launchpad.net/bugs/cve/CVE-2024-26828
- https://access.redhat.com/security/cve/CVE-2024-26828
- https://lore.kernel.org/linux-cve-announce/2024041703-CVE-2024-26828-b2be@gregkh/T
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2275601
- https://access.redhat.com/errata/RHSA-2024:3460
- https://access.redhat.com/errata/RHSA-2024:3461
- https://access.redhat.com/errata/RHSA-2024:5363
- https://bugzilla.redhat.com/show_bug.cgi?id=2275600
- https://git.kernel.org/linus/cffe487026be13eaf37ea28b783d9638ab147204
- https://security-tracker.debian.org/tracker/CVE-2024-26828
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26828
- https://nvd.nist.gov/vuln/detail/CVE-2024-26828
- https://ubuntu.com/security/CVE-2024-26828
Frequently Asked Questions
What is the severity of CVE-2024-26828?
CVE-2024-26828 is considered a moderate severity vulnerability affecting the Linux kernel.
How do I fix CVE-2024-26828?
To resolve CVE-2024-26828, upgrade to the recommended kernel versions which are 6.1.79, 6.6.18, 6.7.6, 6.8, or specified versions in Debian.
What systems are affected by CVE-2024-26828?
CVE-2024-26828 affects multiple versions of the Linux kernel, specifically those up to versions 6.1.79, 6.6.18, 6.7.6, and 6.8 in Red Hat, and certain versions in Debian.
What component is mainly impacted by CVE-2024-26828?
CVE-2024-26828 primarily impacts the CIFS (Common Internet File System) functionality in the Linux kernel.
What is the cause of CVE-2024-26828?
CVE-2024-26828 is caused by an underflow issue in the parse_server_interfaces() function of the Linux kernel.
- agent/title
- agent/type
- agent/first-publish-date
- collector/launchpad-cve
- source/Launchpad
- agent/author
- agent/references
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2024-26828
- agent/software-canonical-lookup
- agent/severity
- collector/nvd-cve
- source/NVD
- collector/mitre-cve
- source/MITRE
- agent/trending
- agent/source
- agent/description
- agent/event
- collector/nvd-api
- agent/remedy
- agent/weakness
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- collector/usn-cve
- source/Ubuntu
- collector/security-tracker-debian
- source/Debian
- package-manager/redhat
- vendor/linux
- canonical/linux kernel
- version/linux kernel/4.18
- version/linux kernel/6.2
- version/linux kernel/6.7
- version/linux kernel/6.8-rc1
- version/linux kernel/6.8-rc2
- version/linux kernel/6.8-rc3
- version/linux kernel/6.8-rc4
- package-manager/debian