CVE-2024-50158

Published: Nov 7, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxt_re: Fix out of bound check Driver exports pacing stats only on GenP5 and P7 adapters. But while parsing the pacing stats, driver has a check for "rdev->dbr_pacing". This caused a trace when KASAN is enabled. BUG: KASAN: slab-out-of-bounds in bnxt_re_get_hw_stats+0x2b6a/0x2e00 [bnxt_re] Write of size 8 at addr ffff8885942a6340 by task modprobe/4809

Vendor	Product	Versions
Linux	Linux	affected `8b6573ff3420a2da1deb469a480dbc454745f784 - < 05c5fcc1869a08e36a29691699b6534e5a00a82b` affected `8b6573ff3420a2da1deb469a480dbc454745f784 - < c11b9b03ea5252898f91f3388c248f0dc47bda52` affected `8b6573ff3420a2da1deb469a480dbc454745f784 - < a9e6e7443922ac0a48243c35d03834c96926bff1`
Linux	Linux	affected `6.6` unaffected `0 - < 6.6` unaffected `6.6.59 - <= 6.6.` unaffected `6.11.6 - <= 6.11.` unaffected `6.12 - <= *`

References

https://git.kernel.org/stable/c/05c5fcc1869a08e36a29691699b6534e5a00a82b

https://git.kernel.org/stable/c/c11b9b03ea5252898f91f3388c248f0dc47bda52

https://git.kernel.org/stable/c/a9e6e7443922ac0a48243c35d03834c96926bff1

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-50158

Description

Affected Products

References