CVE-2024-53146 | Linux Kernel up to 6.12.1 NFSD decode_cb_compound4res length integer overflow

Posted by Angelo Barbosa | Dec 24, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 6.12.1. This issue affects the function decode_cb_compound4res of the component NFSD. The manipulation of the argument length leads to integer overflow.

The identification of this vulnerability is CVE-2024-53146. Access to the local network is required for this attack to succeed. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-53146 | Linux Kernel up to 6.12.1 NFSD decode_cb_compound4res length integer overflow

Related Posts

CVE-2023-52362 | Huawei HarmonyOS/EMUI Lock Screen Module permission

CVE-2024-32539 | JoomUnited WP File Download Light Plugin up to 1.3.3 on WordPress cross site scripting

CVE-2023-35629 | Microsoft Windows USBHUB 3.0 Device Driver Local Privilege Escalation

CVE-2023-26154 | PubNub entropy