Lucene search

CVE-2024-36963 tracefs: Reset permissions on remount if permissions are options

🗓️ 03 Jun 2024 07:01:50Reported by LinuxType

CVE-2024-36963 tracefs: Reset permissions on remount if permissions are options. Inconsistency in handling permissions, causing security issues

Reporter	Title	Published	Views	Family All 34
OSV	UBUNTU-CVE-2024-36963	3 Jun 202408:15	–	osv
OSV	CVE-2024-36963	3 Jun 202408:15	–	osv
OSV	USN-6955-1 linux-oem-6.8 vulnerabilities	12 Aug 202418:05	–	osv
OSV	USN-6952-1 linux-nvidia-lowlatency, linux-oracle vulnerabilities	9 Aug 202400:06	–	osv
OSV	USN-6949-1 linux, linux-aws, linux-gcp, linux-gke, linux-ibm, linux-nvidia, linux-nvidia-6.8 vulnerabilities	8 Aug 202421:48	–	osv
OSV	USN-6949-2 linux-lowlatency, linux-raspi vulnerabilities	13 Aug 202417:30	–	osv
OSV	USN-6952-2 linux-azure vulnerabilities	13 Aug 202418:11	–	osv
OSV	MGASA-2024-0263 Updated kernel kmod-xtables-addons kmod-virtualbox dwarves packages fix security vulnerabilities	13 Jul 202407:54	–	osv
OSV	MGASA-2024-0266 Updated kernel-linus packages fix security vulnerabilities	14 Jul 202405:23	–	osv
RedhatCVE	CVE-2024-36963	4 Jun 202416:49	–	redhatcve

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "fs/tracefs/event_inode.c",
      "fs/tracefs/inode.c",
      "fs/tracefs/internal.h"
    ],
    "versions": [
      {
        "version": "628adb842bd5e1c2c598534a7a022b8235289de6",
        "lessThan": "5f91fc82794d4a6e41cdcd02d00baa377d94ca78",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "8186fff7ab649085e2c60d032d9a20a85af1d87c",
        "lessThan": "414fb08628143203d29ccd0264b5a83fb9523c03",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "8186fff7ab649085e2c60d032d9a20a85af1d87c",
        "lessThan": "baa23a8d4360d981a49913841a726edede5cdd54",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "fs/tracefs/event_inode.c",
      "fs/tracefs/inode.c",
      "fs/tracefs/internal.h"
    ],
    "versions": [
      {
        "version": "6.8",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "6.8",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.6.31",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.8.10",
        "lessThanOrEqual": "6.8.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.9",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/414fb08628143203d29ccd0264b5a83fb9523c03
git	www.git.kernel.org/stable/c/5f91fc82794d4a6e41cdcd02d00baa377d94ca78
git	www.git.kernel.org/stable/c/baa23a8d4360d981a49913841a726edede5cdd54

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

03 Jun 2024 07:50Current

6.6Medium risk

Vulners AI Score6.6

EPSS0.00045