CVE-2024-53142

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Dec 6, 2024
Updated: Dec 14, 2024
CWE ID 787

Summary

CVE-2024-53142 is a vulnerability in the Linux kernel's initramfs handling that could lead to the creation of files with trailing uninitialized memory. The issue arises due to the assumption by the do_name() path handler that the path is zero-terminated when extracting initramfs cpio archives. By exploiting this, an attacker could potentially create files with unexpected names in the initramfs filesystem. This vulnerability is considered low-risk, as it requires already having control of the system to exploit, but it has been addressed in the kernel by aborting the initramfs FSM if any cpio entry lacks the expected zero-terminator. The vulnerability can be observed by appending the output of a specially crafted script to an existing initramfs and looking for the creation of files with unexpected names. The risk is mitigated by zero-terminating symlink filename fields in do_symlink().

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share