Off-by-one Error in rds_recv_track_latency Leads to Out-of-bounds Access

Off-by-one Error in rds_recv_track_latency Leads to Out-of-bounds Access

CVE-2024-23849 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

In rds_recv_track_latency in net/rds/af_rds.c in the Linux kernel through 6.7.1, there is an off-by-one error for an RDS_MSG_RX_DGRAM_TRACE_MAX comparison, resulting in out-of-bounds access.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.