CVE-2024-35880
Published May 19, 2024
Last updated 6 months ago
AI description
CVE-2024-35880 is a vulnerability in the Linux kernel, specifically within the io_uring/kbuf subsystem. The vulnerability arises because the code doesn't properly manage the `io_buffer_list` reference during mmap operations. To address this, a fix was implemented to ensure that the kbuf isn't unregistered before the mmap operation is complete. The solution involves looking up the buffer list under RCU (Read-Copy-Update) and grabbing a reference to it. This prevents the buffer list from being unregistered prematurely, as the lookup now directly returns the `io_buffer_list` with a held reference.
- Description
- In the Linux kernel, the following vulnerability has been resolved: io_uring/kbuf: hold io_buffer_list reference over mmap If we look up the kbuf, ensure that it doesn't get unregistered until after we're done with it. Since we're inside mmap, we cannot safely use the io_uring lock. Rely on the fact that we can lookup the buffer list under RCU now and grab a reference to it, preventing it from being unregistered until we're done with it. The lookup returns the io_buffer_list directly with it referenced.
- Source
- 416baaa9-dc9f-4396-8d5f-8c081fb06d67
- NVD status
- Awaiting Analysis
Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.
- Hype score
18