Wind River Support Network

HomeDefectsLIN1022-10683
Fixed

LIN1022-10683 : Security Advisory - openipmi - CVE-2024-42934

Created: Aug 29, 2024    Updated: Jun 5, 2025
Resolved Date: May 28, 2025
Found In Version: 10.22.33.1
Fix Version: 10.22.33.21
Severity: Standard
Applicable for: Wind River Linux LTS 22
Component/s: Userspace

Description

OpenIPMI before 2.0.36 has an out-of-bounds array access (for authentication type) in the ipmi_sim simulator, resulting in denial of service or (with very low probability) authentication bypass or code execution.

https://nvd.nist.gov/vuln/detail/CVE-2024-42934

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube