Linux Kernel Accel/QAIC Bounds Checking Vulnerability in Message Decoding

A vulnerability in the Linux kernel's accel/qaic component has been addressed by tightening the bounds checking in the decode_message function. This vulnerability could lead to memory corruption by allowing the decoding process to read beyond the allocated buffer, potentially overwriting critical data or control structures. The issue was resolved by copying the bounds checking logic from the encode_message function to ensure that the header sizes are valid before processing the message data. The vulnerability affects several versions of the Linux kernel.

Impact

The vulnerability could be exploited to corrupt memory during the message decoding process, leading to potential memory corruption issues in the kernel.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been addressed. The patched version can be downloaded from the Linux kernel official repository.