CVE-2024-42934: 
Rocky Linux vulnerability analysis and mitigation

OpenIPMI before version 2.0.36 contains a vulnerability in the ipmisim simulator component. The issue stems from an out-of-bounds array access related to authentication type in incoming LAN messages. This vulnerability was discovered by AWS Security and was assigned CVE-2024-42934. It's important to note that this vulnerability only affects the IPMI simulator (ipmisim) and not the main library (Red Hat Bug).

The vulnerability is characterized by a missing check on the authorization type for incoming LAN messages in the IPMI simulator. The authorization value is limited to 4 bits for old IPMI LAN and 8 bits for RMCP+. The issue was addressed with two fixes: the initial fix for bounds checking on incoming messages and a subsequent fix for authorization range checking issues. The vulnerability has been assigned a CVSS 3.1 Base Score of 5.0 (Medium) with the vector: CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L (NVD).

The vulnerability can lead to multiple potential impacts. The primary concern is the ability to cause a denial of service by crashing ipmisim through out-of-bounds array indexing. There is also a low probability of authentication bypass, allowing messages to be authenticated without proper verification. Additionally, there exists a very low probability of arbitrary code execution ([Red Hat Bug](https://bugzilla.redhat.com/showbug.cgi?id=2308375)).

Users are advised to upgrade to OpenIPMI version 2.0.36 or later to address this vulnerability. The issue has been fixed through two commits: b52e8e2538b2 'lanserv: Check some bounds on incoming messages' and 4c129d0540f3 'lanserv: Fix an issue with authorization range checking' (Red Hat Bug).