CVE-2024-53226
"VMware Linux RDMA NULL Pointer Dereference"
Description
In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix NULL pointer derefernce in hns_roce_map_mr_sg() ib_map_mr_sg() allows ULPs to specify NULL as the sg_offset argument. The driver needs to check whether it is a NULL pointer before dereferencing it.
INFO
Published Date :
Dec. 27, 2024, 2:15 p.m.
Last Modified :
Jan. 8, 2025, 4:40 p.m.
Source :
416baaa9-dc9f-4396-8d5f-8c081fb06d67
Remotely Exploitable :
No
Impact Score :
3.6
Exploitability Score :
1.8
Public PoC/Exploit Available at Github
CVE-2024-53226 has a 1 public PoC/Exploit available at Github.
Go to the Public Exploits tab to see the list.
References to Advisories, Solutions, and Tools
Here, you will find a curated list of external links that provide in-depth
information, practical solutions, and valuable tools related to
CVE-2024-53226.
We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).
None
Results are limited to the first 15 repositories due to potential performance issues.
The following list is the news that have been mention
CVE-2024-53226 vulnerability anywhere in the article.
The following table lists the changes that have been made to the
CVE-2024-53226 vulnerability over time.
Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.
-
Initial Analysis by [email protected]
Jan. 08, 2025
Action Type Old Value New Value Added CVSS V3.1 NIST AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Added CWE NIST CWE-476 Added CPE Configuration OR *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 5.10.224 up to (excluding) 5.10.231 *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 5.15.165 up to (excluding) 5.15.174 *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 6.1.103 up to (excluding) 6.1.120 *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 6.6.44 up to (excluding) 6.6.64 *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 6.10.3 up to (excluding) 6.11.11 *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 6.12 up to (excluding) 6.12.2 Changed Reference Type https://git.kernel.org/stable/c/35f5b68f63aac61d30ce0b0c6beb09b8845a3e65 No Types Assigned https://git.kernel.org/stable/c/35f5b68f63aac61d30ce0b0c6beb09b8845a3e65 Patch Changed Reference Type https://git.kernel.org/stable/c/52617e76f4963644db71dc0a17e998654dc0c7f4 No Types Assigned https://git.kernel.org/stable/c/52617e76f4963644db71dc0a17e998654dc0c7f4 Patch Changed Reference Type https://git.kernel.org/stable/c/6b0d7d6e6883d0ec70cd7b5a02c47c003d5defe7 No Types Assigned https://git.kernel.org/stable/c/6b0d7d6e6883d0ec70cd7b5a02c47c003d5defe7 Patch Changed Reference Type https://git.kernel.org/stable/c/6b526d17eed850352d880b93b9bf20b93006bd92 No Types Assigned https://git.kernel.org/stable/c/6b526d17eed850352d880b93b9bf20b93006bd92 Patch Changed Reference Type https://git.kernel.org/stable/c/71becb0e9df78a8d43dfd0efcef18c830a0af477 No Types Assigned https://git.kernel.org/stable/c/71becb0e9df78a8d43dfd0efcef18c830a0af477 Patch Changed Reference Type https://git.kernel.org/stable/c/8c269bb2cc666ca580271e1a8136c63ac9162e1e No Types Assigned https://git.kernel.org/stable/c/8c269bb2cc666ca580271e1a8136c63ac9162e1e Patch Changed Reference Type https://git.kernel.org/stable/c/bd715e191d444992d6ed124f15856da5c1cae2de No Types Assigned https://git.kernel.org/stable/c/bd715e191d444992d6ed124f15856da5c1cae2de Patch -
New CVE Received by 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Dec. 27, 2024
Action Type Old Value New Value Added Description In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix NULL pointer derefernce in hns_roce_map_mr_sg() ib_map_mr_sg() allows ULPs to specify NULL as the sg_offset argument. The driver needs to check whether it is a NULL pointer before dereferencing it. Added Reference https://git.kernel.org/stable/c/35f5b68f63aac61d30ce0b0c6beb09b8845a3e65 Added Reference https://git.kernel.org/stable/c/52617e76f4963644db71dc0a17e998654dc0c7f4 Added Reference https://git.kernel.org/stable/c/6b0d7d6e6883d0ec70cd7b5a02c47c003d5defe7 Added Reference https://git.kernel.org/stable/c/6b526d17eed850352d880b93b9bf20b93006bd92 Added Reference https://git.kernel.org/stable/c/71becb0e9df78a8d43dfd0efcef18c830a0af477 Added Reference https://git.kernel.org/stable/c/8c269bb2cc666ca580271e1a8136c63ac9162e1e Added Reference https://git.kernel.org/stable/c/bd715e191d444992d6ed124f15856da5c1cae2de
CWE - Common Weakness Enumeration
While CVE identifies
specific instances of vulnerabilities, CWE categorizes the common flaws or
weaknesses that can lead to vulnerabilities. CVE-2024-53226 is
associated with the following CWEs:
Common Attack Pattern Enumeration and Classification (CAPEC)
Common Attack Pattern Enumeration and Classification
(CAPEC)
stores attack patterns, which are descriptions of the common attributes and
approaches employed by adversaries to exploit the CVE-2024-53226
weaknesses.