CVE-2024-38575: wifi: brcmfmac: pcie: handle randbuf allocation failure
In the Linux kernel, the following vulnerability has been resolved:
wifi: brcmfmac: pcie: handle randbuf allocation failure
The kzalloc() in brcmfpciedownloadfwnvram() will return null if the physical memory has run out. As a result, if we use getrandombytes() to generate random bytes in the randbuf, the null pointer dereference bug will happen.
In order to prevent allocation failure, this patch adds a separate function using buffer on kernel stack to generate random bytes in the randbuf, which could prevent the kernel stack from overflow.
Other sources
In the Linux kernel, the following vulnerability has been resolved:
wifi: brcmfmac: pcie: handle randbuf allocation failure
The Linux kernel CVE team has assigned CVE-2024-38575 to this issue.
Upstream advisory: https://lore.kernel.org/linux-cve-announce/2024061946-CVE-2024-38575-8b6b@gregkh/T
— Red Hat
Affected Software
Remediation
Event History
Frequently Asked Questions
What is the severity of CVE-2024-38575?
CVE-2024-38575 is considered a high-severity vulnerability due to its potential impact on the Linux kernel's memory management.
How do I fix CVE-2024-38575?
To resolve CVE-2024-38575, update the Linux kernel to versions 6.1.93, 6.6.33, 6.8.12, 6.9.3, 6.10, or later.
Which Linux distributions are affected by CVE-2024-38575?
CVE-2024-38575 affects several distributions that use vulnerable versions of the Linux kernel, specifically Red Hat and Debian derivatives.
What components are vulnerable in CVE-2024-38575?
The vulnerability in CVE-2024-38575 is specifically related to the brcmfmac PCIe module in the Linux kernel.
Can CVE-2024-38575 lead to system crashes?
Yes, CVE-2024-38575 can potentially cause system instability or crashes due to memory allocation failures.