CVE-2024-35976

🗓️ 20 May 2024 09:42:02Reported by LinuxType

Linux kernel xsk vulnerability, CVE-2024-35976 resolved by validating user input for XDP_{UMEM|COMPLETION}_FILL_RING in xsk_setsockopt(

Reporter	Title	Published	Views	Family All 193
Tenable Nessus	Amazon Linux 2023 : bpftool, kernel, kernel-devel (ALAS2023-2024-613)	13 May 202400:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel (ALASKERNEL-5.10-2024-067)	17 Aug 202400:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.15-2024-049 (ALASKERNEL-5.15-2024-049)	17 Aug 202400:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.4-2024-077 (ALASKERNEL-5.4-2024-077)	17 Aug 202400:00	–	nessus
Tenable Nessus	Debian dla-3842 : linux-config-5.10 - security update	27 Jun 202400:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP9 : kernel (EulerOS-SA-2024-2394)	12 Sep 202400:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP10 : kernel (EulerOS-SA-2024-2441)	12 Sep 202400:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP12 : kernel (EulerOS-SA-2024-2938)	12 Dec 202400:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP12 : kernel (EulerOS-SA-2024-2953)	12 Dec 202400:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP11 : kernel (EulerOS-SA-2024-2969)	12 Dec 202400:00	–	nessus

NVD

Vulners

CNA

Node

linux linux_kernelRange4.18–4.19.317

linux linux_kernelRange4.20–5.4.278

linux linux_kernelRange5.5–5.10.216

linux linux_kernelRange5.11–5.15.156

linux linux_kernelRange5.16–6.1.87

linux linux_kernelRange6.2–6.6.28

linux linux_kernelRange6.7–6.8.7

linux linux_kernelMatch6.9rc1

linux linux_kernelMatch6.9rc2

linux linux_kernelMatch6.9rc3

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/xdp/xsk.c"
    ],
    "versions": [
      {
        "version": "423f38329d267969130fb6f2c685f73d72687558",
        "lessThan": "beb99266830520e15fbc6ca8cc5a5240d76851fd",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "423f38329d267969130fb6f2c685f73d72687558",
        "lessThan": "0b45c25d60e38f5c2cb6823f886773a34323306d",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "423f38329d267969130fb6f2c685f73d72687558",
        "lessThan": "a82984b3c6a7e8c7937dba6e857ddf829d149417",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "423f38329d267969130fb6f2c685f73d72687558",
        "lessThan": "f0a068de65d5b7358e9aff792716afa9333f3922",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "423f38329d267969130fb6f2c685f73d72687558",
        "lessThan": "2a523f14a3f53b46ff0e1fafd215b0bc5f6783aa",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "423f38329d267969130fb6f2c685f73d72687558",
        "lessThan": "b143e19dc28c3211f050f7848d87d9b0a170e10c",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "423f38329d267969130fb6f2c685f73d72687558",
        "lessThan": "2eb979fbb2479bcd7e049f2f9978b6590dd8a0e6",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "423f38329d267969130fb6f2c685f73d72687558",
        "lessThan": "237f3cf13b20db183d3706d997eedc3c49eacd44",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/xdp/xsk.c"
    ],
    "versions": [
      {
        "version": "4.18",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "4.18",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "4.19.317",
        "lessThanOrEqual": "4.19.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.4.278",
        "lessThanOrEqual": "5.4.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.10.216",
        "lessThanOrEqual": "5.10.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.15.156",
        "lessThanOrEqual": "5.15.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.1.87",
        "lessThanOrEqual": "6.1.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.6.28",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.8.7",
        "lessThanOrEqual": "6.8.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.9",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/f0a068de65d5b7358e9aff792716afa9333f3922
git	www.git.kernel.org/stable/c/2eb979fbb2479bcd7e049f2f9978b6590dd8a0e6
git	www.git.kernel.org/stable/c/237f3cf13b20db183d3706d997eedc3c49eacd44
git	www.git.kernel.org/stable/c/2a523f14a3f53b46ff0e1fafd215b0bc5f6783aa
git	www.git.kernel.org/stable/c/b143e19dc28c3211f050f7848d87d9b0a170e10c
git	www.git.kernel.org/stable/c/beb99266830520e15fbc6ca8cc5a5240d76851fd
git	www.git.kernel.org/stable/c/a82984b3c6a7e8c7937dba6e857ddf829d149417
git	www.git.kernel.org/stable/c/0b45c25d60e38f5c2cb6823f886773a34323306d
cert-portal	www.cert-portal.siemens.com/productcert/html/ssa-613116.html
cert-portal	www.cert-portal.siemens.com/productcert/html/ssa-265688.html

12 May 2026 12:16Current

6.4Medium risk

Vulners AI Score6.4

CVSS 3.16.7

EPSS0.00011

SSVC

CWE-787