REDHAT-BUG-2187931
First published: Wed Apr 19 2023(Updated: )
The improper cleanup of resolve_prepare_src leads to a key mismatch or duplicate key in the cma id tree, which results in out-of-boundary in compare_netdev_and_ip. The issue was found in drivers/infiniband/core/cma.c in Linux in 6.1. A local user can utilize this bug to crash the system or escalation of privilege. Affected component: rdma driver References: <a href="https://lkml.org/lkml/2022/12/9/178">https://lkml.org/lkml/2022/12/9/178</a> <a href="https://www.spinics.net/lists/linux-rdma/msg114749.html">https://www.spinics.net/lists/linux-rdma/msg114749.html</a> <a href="https://patchwork.kernel.org/project/linux-rdma/patch/3d0e9a2fd62bc10ba02fed1c7c48a48638952320.1672819273.git.leonro@nvidia.com/">https://patchwork.kernel.org/project/linux-rdma/patch/3d0e9a2fd62bc10ba02fed1c7c48a48638952320.1672819273.git.leonro@nvidia.com/</a>
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linux kernel | ||
| Linux RDMA Driver |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://lkml.org/lkml/2022/12/9/178
- https://www.spinics.net/lists/linux-rdma/msg114749.html
- https://patchwork.kernel.org/project/linux-rdma/patch/3d0e9a2fd62bc10ba02fed1c7c48a48638952320.1672819273.git.leonro@nvidia.com/
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2187935
- https://access.redhat.com/errata/RHSA-2024:0461
- https://access.redhat.com/errata/RHSA-2024:0439
- https://access.redhat.com/errata/RHSA-2024:0448
- https://access.redhat.com/errata/RHSA-2024:0724
- https://access.redhat.com/errata/RHSA-2024:0881
- https://access.redhat.com/errata/RHSA-2024:0897
- https://access.redhat.com/errata/RHSA-2024:1250
- https://access.redhat.com/errata/RHSA-2024:1306
- https://access.redhat.com/errata/RHSA-2024:1367
- https://access.redhat.com/errata/RHSA-2024:1382
- https://access.redhat.com/errata/RHSA-2024:1404
- https://access.redhat.com/errata/RHSA-2024:3528
- https://bugzilla.redhat.com/show_bug.cgi?id=2187931
Frequently Asked Questions
What is the severity of REDHAT-BUG-2187931?
The severity of REDHAT-BUG-2187931 is critical as it allows local users to crash the system or escalate privileges.
How do I fix REDHAT-BUG-2187931?
To fix REDHAT-BUG-2187931, apply the latest Linux kernel patches that address the cma id tree issue.
What systems are affected by REDHAT-BUG-2187931?
REDHAT-BUG-2187931 affects the Linux kernel and the Linux RDMA driver.
Can REDHAT-BUG-2187931 be exploited remotely?
No, REDHAT-BUG-2187931 requires local access to exploit the vulnerability.
What is the root cause of REDHAT-BUG-2187931?
The root cause of REDHAT-BUG-2187931 is improper cleanup in the resolve_prepare_src function leading to key mismatches.
- agent/severity
- agent/type
- agent/description
- agent/first-publish-date
- agent/event
- agent/references
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2023-2176
- agent/last-modified-date
- agent/source
- agent/tags
- agent/softwarecombine
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/linux
- canonical/linux kernel
- canonical/linux rdma driver