CVE-2024-36927 | Linux Kernel up to 6.6.30/6.8.9 ipv4 __ip_make_skb uninitialized resource (5db08343ddb1/f5c603ad4e6f/fc1092f51567)

Inserito da Angelo Barbosa | Mag 30, 2024 | CVE

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 6.6.30/6.8.9. Affected is the function __ip_make_skb of the component ipv4. The manipulation leads to uninitialized resource.

This vulnerability is traded as CVE-2024-36927. The attack needs to be done within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-36927 | Linux Kernel up to 6.6.30/6.8.9 ipv4 __ip_make_skb uninitialized resource (5db08343ddb1/f5c603ad4e6f/fc1092f51567)

Post correlati

CVE-2024-20478 | Cisco Application Policy Infrastructure Controller (APIC) Software Upgrade unnecessary privileges (cisco-sa-capic-priv-esc-uYQJjnuU)

CVE-2021-47319 | Linux Kernel up to 5.13.3 virtio-blk memory leak

CVE-2024-1003 | Totolink N200RE 9.3.5u.6139_B20201216 /cgi-bin/cstecgi.cgi setLanguageCfg lang stack-based overflow

CVE-2024-40596 | CheckUser Extension up to 1.42.1 on MediaWiki Special:Investigate information disclosure