CVE-2024-50158 is a vulnerability identified in the Linux kernel, specifically within the RDMA (Remote Direct Memory Access) bnxt_re driver, which is used for Broadcom NetXtreme-E network adapters. The issue arises from an out-of-bounds memory access during the parsing of pacing statistics. The driver exports pacing stats only on GenP5 and P7 adapters, but the code incorrectly checks for the presence of "rdev->dbr_pacing" while parsing these stats. This leads to a slab-out-of-bounds write detected by the Kernel Address Sanitizer (KASAN) when enabled, causing a kernel bug (BUG: KASAN: slab-out-of-bounds in bnxt_re_get_hw_stats). The vulnerability manifests as an 8-byte write at an invalid memory address during execution of the modprobe task, which could potentially lead to memory corruption within the kernel space. Although no known exploits are reported in the wild, the vulnerability could be leveraged to cause denial of service (kernel crash) or potentially escalate privileges if exploited. The affected Linux kernel versions are identified by specific commit hashes, indicating that the issue is present in certain recent kernel builds prior to the patch. The vulnerability was reserved on October 21, 2024, and published on November 7, 2024, but no CVSS score has been assigned yet.

For European organizations, this vulnerability poses a risk primarily to systems running Linux kernels with the vulnerable bnxt_re driver enabled, particularly those using Broadcom NetXtreme-E GenP5 and P7 network adapters. Such systems are common in enterprise data centers, cloud infrastructure, and high-performance computing environments. Exploitation could lead to kernel crashes causing denial of service, impacting availability of critical services. In worst-case scenarios, memory corruption could be leveraged for privilege escalation, threatening confidentiality and integrity of sensitive data. This is especially critical for sectors like finance, healthcare, telecommunications, and government agencies in Europe that rely heavily on Linux-based infrastructure. The lack of known exploits reduces immediate risk, but the presence of a kernel-level memory corruption bug warrants prompt attention to prevent potential targeted attacks. Additionally, the use of KASAN to detect the bug indicates it may be exploitable under certain conditions, increasing the threat to organizations with high-security requirements.

European organizations should prioritize updating their Linux kernels to versions where this vulnerability is patched. Since the vulnerability is tied to specific hardware drivers (bnxt_re for Broadcom NetXtreme-E GenP5 and P7 adapters), organizations should audit their hardware inventory to identify affected network adapters. Disabling or unloading the bnxt_re driver temporarily can mitigate risk if patching is delayed, though this may impact network functionality. Enabling kernel hardening features such as KASAN in testing environments can help detect similar issues proactively. Network segmentation and strict access controls should be enforced to limit exposure of vulnerable systems. Monitoring kernel logs for unusual crashes or KASAN alerts can provide early warning signs of exploitation attempts. Finally, vendors and Linux distributions should be engaged to ensure timely deployment of patches and security advisories.