Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2024-36964HistoryJun 03, 2024 - 8:15 a.m.
CVE-2024-36964
2024-06-0308:15:09
Debian Security Bug Tracker
security-tracker.debian.org
9
linux kernel
resolved
vulnerability
In the Linux kernel, the following vulnerability has been resolved: fs/9p: only translate RWX permissions for plain 9P2000 Garbage in plain 9P2000’s perm bits is allowed through, which causes it to be able to set (among others) the suid bit. This was presumably not the intent since the unix extended bits are handled explicitly and conditionally on .u.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | linux | < 6.1.94-1 | linux_6.1.94-1_all.deb |
| Debian | 11 | all | linux | < 5.10.218-1 | linux_5.10.218-1_all.deb |
| Debian | 999 | all | linux | < 6.8.11-1 | linux_6.8.11-1_all.deb |
| Debian | 13 | all | linux | < 6.8.11-1 | linux_6.8.11-1_all.deb |
Related
redhatcve
redhatcve
CVE-2024-36964
2024-06-04 16:49:48
nvd
nvd
CVE-2024-36964
2024-06-03 08:15:09
vulnrichment
vulnrichment
CVE-2024-36964 fs/9p: only translate RWX permissions for plain 9P2000
2024-06-03 07:50:01
cvelist
cvelist
CVE-2024-36964 fs/9p: only translate RWX permissions for plain 9P2000
2024-06-03 07:50:01
cve
cve
CVE-2024-36964
2024-06-03 08:15:09
osv
osv
CVE-2024-36964
2024-06-03 08:15:00
Security update for the Linux Kernel
2024-08-13 14:08:42
Security update for the Linux Kernel
2024-07-10 13:03:41
ubuntucve
ubuntucve
CVE-2024-36964
2024-06-03 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2024:2895-1)
2024-08-14 00:00:00
Ubuntu: Security Advisory (USN-6950-4)
2024-08-22 00:00:00
Ubuntu: Security Advisory (USN-6950-1)
2024-08-09 00:00:00
nessus
nessus
SUSE SLES15 Security Update : kernel (SUSE-SU-2024:2495-1)
2024-07-17 00:00:00
SUSE SLES15 Security Update : kernel (SUSE-SU-2024:2365-1)
2024-07-10 00:00:00
Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel vulnerabilities (USN-6950-1)
2024-08-08 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2024-08-13 00:00:00
Linux kernel (Oracle) vulnerabilities
2024-08-13 00:00:00
Linux kernel vulnerabilities
2024-08-08 00:00:00
mageia
mageia
Updated kernel-linus packages fix security vulnerabilities
2024-07-14 08:23:38