LiveActive security incident?Get immediate response
CVE Record

CVE-2024-38579: crypto: bcm - Fix pointer arithmetic

In the Linux kernel, the following vulnerability has been resolved: crypto: bcm - Fix pointer arithmetic In spu2_dump_omd() value of ptr is increased by ciph_key_len instead of hash_iv_len which could lead to going beyond the buffer boundaries. Fix this bug by changing ciph_key_len to hash_iv_len. Found by Linux Verification Center (linuxtesting.org) with SVACE.

UnknownCVSS not scoredNot KEV-listedUpdated
Glexia's TakeAutomated analysisunknown

Security readout for executives and security teams

Plain-English summary

CVE-2024-38579 is a Linux kernel bug in the bcm crypto code. A pointer is advanced by the wrong length value, which can move it beyond a buffer boundary. The public record does not provide CVSS severity, impact details, or evidence of active exploitation.

Executive priority

Handle through normal kernel patch governance unless vendor context shows higher exposure. There is enough evidence to update affected kernels, but not enough public evidence to justify emergency response based only on this CVE.

Technical view

In spu2_dump_omd(), ptr is incremented by ciph_key_len when hash_iv_len should be used. The Linux fix changes that arithmetic to avoid out-of-bounds buffer traversal. The issue was found by Linux Verification Center using SVACE and fixed across multiple stable kernel branches.

Likely exposure

Exposure is likely limited to systems running affected Linux kernel versions where the bcm crypto code is present and reachable. The source bundle lists Linux as affected and provides stable kernel fix commits, but does not identify exploitable configurations, attack prerequisites, or broad product impact beyond referenced advisories.

Exploitation context

The source bundle marks KEV as false and gives no cited evidence of exploitation in the wild. It also does not describe a public exploit, required privileges, remote reachability, or likely crash/data exposure outcome. Treat exploitation status as unconfirmed, not active.

Researcher notes

The key evidence is a one-line pointer arithmetic correction in Linux crypto bcm code. Missing data includes CVSS, CWE, attack vector, privilege requirements, and exploitability analysis. Validation should focus on kernel branch, backport status, and whether the affected code is present.

Mitigation direction

  • Apply Linux kernel updates containing the referenced stable fixes.
  • Use distribution security updates, such as Debian LTS guidance where applicable.
  • Check Siemens advisories if managing affected Siemens products.
  • Prioritize systems using affected kernel branches and bcm crypto functionality.
  • Track vendor kernel backports rather than relying only on version strings.

Validation and detection

  • Inventory Linux kernel versions across servers, appliances, and embedded systems.
  • Map running kernels against vendor advisories and referenced stable commits.
  • Confirm whether bcm crypto code is built or loaded on relevant systems.
  • Verify patched kernels are active after reboot, not only installed.
  • Review change records for Debian LTS or Siemens-managed assets.
Prepared
Confidence
medium
Sources
12

Generated from the cited source records. This long-tail analysis has not been individually reviewed by a named human.

Potential ATT&CK relevance

Conservative CVE-to-ATT&CK context

These mappings and lookup hints may be relevant to the vulnerability behavior, CWE, affected product, or exposure path. Glexia-inferred context is not an official MITRE, ATT&CK, CWE, or CVE Program mapping.

ATT&CK lookup starting points

Use these exact CWE pages and searches to review the Glexia ATT&CK library from this CVE's weakness and description context.

cve · low confidence lookup

CVE-2024-38579 mapping review

Open the CVE-to-ATT&CK bridge for reviewed, inferred, or future official mappings tied to this CVE.

Open ATT&CK lookup
Vulnerability profileCVE Program record
Severity
Unknown
CVSS
Not scored
Known Exploited
No
Published
Official CVE source material

CNA and ADP enrichment extracted from CVE v5

These fields come from the CVE record and ADP containers, not from Glexia's Take. They preserve time-varying source decisions such as CISA SSVC, KEV status, CVSS metrics, and provider references.

0CVSS vectors
3Timeline events
3ADP providers
13Source links

SSVC decision data

CISA-ADPCISA Coordinator
Timestamp
Version
2.0.3
Exploitation: noneAutomatable: noTechnical Impact: partial

Vulnerability timeline

Timeline events are normalized from CVE metadata, CNA source timelines, ADP timelines, and KEV metadata when present.

  1. CVE reservedCVE Program

    The CVE ID was reserved by the assigning CNA.

  2. CVE publishedCVE Program

    The CVE record was published.

  3. CVE updatedCVE Program

    The CVE record metadata indicates this as the latest update time.

ADP provider summaries

CVECVE Program Container
CISA-ADPCISA ADP Vulnrichment
other:ssvc
siemens-SADPADP container
Affected products

Products and packages named in the record

VendorProductVersion / packageStatus
LinuxLinux9d12ba86f818aa9cfe9f01b750336aa441f2ffa2, 9d12ba86f818aa9cfe9f01b750336aa441f2ffa2, 9d12ba86f818aa9cfe9f01b750336aa441f2ffa2, 9d12ba86f818aa9cfe9f01b750336aa441f2ffa2, 9d12ba86f818aa9cfe9f01b750336aa441f2ffa2, 9d12ba86f818aa9cfe9f01b750336aa441f2ffa2, 9d12ba86f818aa9cfe9f01b750336aa441f2ffa2, 9d12ba86f818aa9cfe9f01b750336aa441f2ffa2, 9d12ba86f818aa9cfe9f01b750336aa441f2ffa2unaffected
LinuxLinux4.11, 0, 4.19.316, 5.4.278, 5.10.219, 5.15.161, 6.1.93, 6.6.33, 6.8.12, 6.9.3, 6.10affected
Weakness

CWE details

No CWE listed

CWE links open Glexia weakness intelligence pages with official CWE context, developer remediation guidance, and related CVE mappings.