Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistLinuxCVELIST:CVE-2024-44996
HistorySep 04, 2024 - 7:54 p.m.

CVE-2024-44996 vsock: fix recursive ->recvmsg calls

2024-09-0419:54:41
Linux
www.cve.org
4
vsock
vulnerability
linux
kernel
fix
recursion
recvmsg
bpf
sockmap

EPSS

0

Percentile

5.1%

JSON

In the Linux kernel, the following vulnerability has been resolved:

vsock: fix recursive ->recvmsg calls

After a vsock socket has been added to a BPF sockmap, its prot->recvmsg
has been replaced with vsock_bpf_recvmsg(). Thus the following
recursiion could happen:

vsock_bpf_recvmsg()
-> __vsock_recvmsg()
-> vsock_connectible_recvmsg()
-> prot->recvmsg()
-> vsock_bpf_recvmsg() again

We need to fix it by calling the original ->recvmsg() without any BPF
sockmap logic in __vsock_recvmsg().

CNA Affected

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "include/net/af_vsock.h",
      "net/vmw_vsock/af_vsock.c",
      "net/vmw_vsock/vsock_bpf.c"
    ],
    "versions": [
      {
        "version": "634f1a7110b4",
        "lessThan": "921f1acf0c3c",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "634f1a7110b4",
        "lessThan": "b4ee8cf1acc5",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "634f1a7110b4",
        "lessThan": "69139d2919dd",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "include/net/af_vsock.h",
      "net/vmw_vsock/af_vsock.c",
      "net/vmw_vsock/vsock_bpf.c"
    ],
    "versions": [
      {
        "version": "6.4",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "6.4",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.6.48",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.10.7",
        "lessThanOrEqual": "6.10.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.11",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Related

debiancve 1
redhatcve 1
cve 1
nvd 1
ubuntucve 1
osv 1
vulnrichment 1
debiancve
debiancve
CVE-2024-44996
2024-09-04 20:15:08
redhatcve
redhatcve
CVE-2024-44996
2024-09-04 22:16:16
cve
cve
CVE-2024-44996
2024-09-04 20:15:08
nvd
nvd
CVE-2024-44996
2024-09-04 20:15:08
ubuntucve
ubuntucve
CVE-2024-44996
2024-09-05 00:00:00
osv
osv
CVE-2024-44996
2024-09-04 20:15:08
vulnrichment
vulnrichment
CVE-2024-44996 vsock: fix recursive ->recvmsg calls
2024-09-04 19:54:41

EPSS

0

Percentile

5.1%

JSON
Related for CVELIST:CVE-2024-44996
debiancve1redhatcve1cve1nvd1ubuntucve1osv1vulnrichment1