CVE-2024-53058
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Summary
CVE-2024-53058 is a vulnerability affecting the Linux kernel's net: stmmac module. This issue stems from an unbalanced DMA map/unmap sequence for non-paged SKB data. When transmitting data, the driver may allocate insufficient DMA descriptors for a single SKB containing non-paged data. Consequently, if the DMA engine does not finish processing the remaining descriptors before unmapping the DMA buffer, the system may access an unmapped memory region, resulting in corrupted data transmission or iommu faults. This vulnerability has been resolved with a patch that corrects the DMA map/unmap sequences by fixing the array index for tx_q->tx_skbuff_dma[entry].buf when assigning DMA buffer addresses. This issue was tested and verified on DWXGMAC CORE 3.20a.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- Linux Kernel
Affected Vendors
- LINUX