CVE-2024-26926

UNKNOWN

Published 2024-04-24T23:23:40.600Z

Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2024-26926. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

In the Linux kernel, the following vulnerability has been resolved:

binder: check offset alignment in binder_get_object()

Commit 6d98eb95b450 ("binder: avoid potential data leakage when copying
txn") introduced changes to how binder objects are copied. In doing so,
it unintentionally removed an offset alignment check done through calls
to binder_alloc_copy_from_buffer() -> check_buffer().

These calls were replaced in binder_get_object() with copy_from_user(),
so now an explicit offset alignment check is needed here. This avoids
later complications when unwinding the objects gets harder.

It is worth noting this check existed prior to commit 7a67a39320df
("binder: add function to copy binder object from buffer"), likely
removed due to redundancy at the time.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Linux

Affected Versions:

c056a6ba35e00ae943e377eb09abd77a6915b31a 23e9d815fad84c1bee3742a8de4bd39510435362 7a9ad4aceb0226b391c9d3b8e4ac2e7d438b6bde 6d98eb95b450a75adb4516a1d33652dc78d2b20c 6d98eb95b450a75adb4516a1d33652dc78d2b20c 6d98eb95b450a75adb4516a1d33652dc78d2b20c 6d98eb95b450a75adb4516a1d33652dc78d2b20c 66e12f5b3a9733f941893a00753b10498724607d

Linux