CVE-2024-57982

Summary

CVE-2024-57982 is a vulnerability affecting the Linux kernel's xfrm module. This issue stems from a concurrency problem during state lookup and rehashing operations. Specifically, the xfrm_dst_hash() function can observe an incorrect hmask value, potentially leading to an out-of-bounds read. This occurs because the lookup and rehash functions can run in parallel, and the xfrm_state_hash_generation seqlock retry may not ensure pointer and hmask consistency. To mitigate this, the suggested solution is to prefetch the state_hmask and associated pointers before the lookup operation, ensuring their consistency. Additionally, lockdep assertions should be added to xfrm_dst_hash() to indicate its safe usage only for insertions. The xfrm_state_lookup_byaddr() function should also use a spinlock instead of RCU for the lockdown, as an oversight from the conversion to RCU.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.