CVE-2024-26819 Information

Apr 18, 2024 cve

Description

In the Linux kernel the following vulnerability has been resolved:

dm: limit the number of targets and parameter size area

The kvmalloc function fails with a warning if the size is larger than INT_MAX. The warning was triggered by a syscall testing robot.

In order to avoid the warning this commit limits the number of targets to 1048576 and the size of the parameter area to 1073741824.

Reference

https://git.kernel.org/stable/c/a891a0621e725e85529985139cada8cb5a74a116 https://git.kernel.org/stable/c/888a0a46b80fa37eacfe81faf47ba0b83876251d https://git.kernel.org/stable/c/c5d83ac2bf6ca668a39ffb1a576899a66153ba19 https://git.kernel.org/stable/c/438d19492b7f002334573bae43276297eb234c80 https://git.kernel.org/stable/c/cd70175481f63af31901dd463e44386f033c3f4c https://git.kernel.org/stable/c/bd504bcfec41a503b32054da5472904b404341a4

Share on: