CVE-2024-57792 is a vulnerability identified in the Linux kernel's power supply subsystem, specifically within the gpio-charger driver component. The issue arises from improper handling of charge current limits for devices that enforce a minimum charge current limit above zero. When a requested charge current limit is set below this minimum threshold, the code incorrectly calculates an index equal to the size of the current_limit_map array. This results in an out-of-bounds memory access beyond the allocated memory for the current_limit_map array. Such memory corruption vulnerabilities can lead to undefined behavior including potential kernel crashes (denial of service), data corruption, or in some cases, privilege escalation if exploited by an attacker to execute arbitrary code within kernel space. The vulnerability affects multiple versions of the Linux kernel identified by the commit hash be2919d8355e4651386ad2fb61ddb6efe4533b1b. Although no known exploits are currently reported in the wild, the vulnerability was publicly disclosed on January 11, 2025, and a patch has been issued to fix the improper bounds checking by correctly enforcing charge current limits and preventing out-of-bounds memory access. The vulnerability does not have an assigned CVSS score yet, but its technical nature indicates a memory safety flaw in a critical kernel subsystem related to power management.

For European organizations, the impact of CVE-2024-57792 can be significant, especially for those relying on Linux-based systems in critical infrastructure, industrial control systems, telecommunications, and enterprise servers. The Linux kernel is widely used across various sectors in Europe, including government agencies, financial institutions, and manufacturing. Exploitation of this vulnerability could lead to kernel crashes causing system downtime or denial of service, which can disrupt business operations. More critically, if an attacker leverages this memory corruption flaw to escalate privileges, it could lead to full system compromise, exposing sensitive data and allowing lateral movement within networks. Devices that use the gpio-charger driver, such as embedded systems, IoT devices, and mobile hardware running Linux, are particularly at risk. Given the increasing reliance on Linux in cloud environments and edge computing across Europe, the vulnerability poses a risk to data confidentiality, integrity, and availability. Although no active exploits are known, the potential for future exploitation necessitates prompt attention to mitigate risks.

European organizations should prioritize the following mitigation steps: 1) Immediately apply the official Linux kernel patch that addresses CVE-2024-57792 to all affected systems, especially those running custom or embedded Linux kernels. 2) Conduct an inventory of devices and systems utilizing the gpio-charger driver or related power supply components to identify vulnerable endpoints. 3) For embedded and IoT devices where kernel updates may be challenging, coordinate with hardware vendors to obtain patched firmware or consider device replacement if patches are unavailable. 4) Implement kernel-level security hardening measures such as Kernel Address Space Layout Randomization (KASLR), Kernel Page Table Isolation (KPTI), and strict memory protection policies to reduce exploitation likelihood. 5) Monitor system logs and kernel messages for signs of abnormal behavior or crashes that could indicate attempted exploitation. 6) Employ network segmentation to limit access to critical Linux systems and reduce attack surface. 7) Maintain up-to-date backups and incident response plans to quickly recover from potential compromise or denial of service events. These targeted actions go beyond generic advice by focusing on the specific subsystem and operational contexts affected by this vulnerability.