CVE-2024-38381

2024-06-2111:15:10

416baaa9-dc9f-4396-8d5f-8c081fb06d67

web.nvd.nist.gov

linux kernel

nfc

nci

uninit-value

nci_rx_work

cve-2024-38381

6.6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

13.1%

JSON

In the Linux kernel, the following vulnerability has been resolved:

nfc: nci: Fix uninit-value in nci_rx_work

syzbot reported the following uninit-value access issue [1]

nci_rx_work() parses received packet from ndev->rx_q. It should be
validated header size, payload size and total packet size before
processing the packet. If an invalid packet is detected, it should be
silently discarded.

Affected configurations

Vulners

Node

linuxlinux_kernelRange6.9–4.19.316

linuxlinux_kernelRange4.20.0–5.4.278

linuxlinux_kernelRange5.5.0–5.10.219

linuxlinux_kernelRange5.11.0–5.15.161

linuxlinux_kernelRange5.16.0–6.1.93

linuxlinux_kernelRange6.2.0–6.6.33

linuxlinux_kernelRange6.7.0–6.9.4

linuxlinux_kernelRange6.10.0–6.10-rc1

CNA Affected

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/nfc/nci/core.c"
    ],
    "versions": [
      {
        "version": "11387b2effbb",
        "lessThan": "406cfac9debd",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "03fe259649a5",
        "lessThan": "485ded868ed6",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "755e53bbc61b",
        "lessThan": "f80b786ab055",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "ac68d9fa09e4",
        "lessThan": "ad4d196d2008",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "b51ec7fc9f87",
        "lessThan": "e8c8e0d0d214",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "a946ebee45b0",
        "lessThan": "e53a7f8afcbd",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "d24b03535e5e",
        "lessThan": "017ff3976249",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "d24b03535e5e",
        "lessThan": "e4a87abf5885",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/nfc/nci/core.c"
    ],
    "versions": [
      {
        "version": "6.9",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "6.9",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "4.19.316",
        "lessThanOrEqual": "4.19.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.4.278",
        "lessThanOrEqual": "5.4.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.10.219",
        "lessThanOrEqual": "5.10.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.15.161",
        "lessThanOrEqual": "5.15.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.1.93",
        "lessThanOrEqual": "6.1.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.6.33",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.9.4",
        "lessThanOrEqual": "6.9.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.10-rc1",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]