AZL-49809 CVE-2024-46852 affecting package kernel for versions less than 5.15.176.3-1

🗓️ 27 Sep 2024 13:15:16Reported by GoogleType

osv

osv🔗 osv.dev👁 1 Views

Linux kernel CMA heap fault handler off-by-one fix; prevents mapping past end in CMA heaps.

Reporter	Title	Published	Views	Family All 109
Android Security Bulletins	Android Security Bulletin—March 2025Stay organized with collectionsSave and categorize content based on your preferences.	3 Mar 202500:00	–	androidsecurity
AstraLinux	Astra Linux - уязвимость в linux-5.15, linux-6.1	20 May 202605:53	–	astralinux
Tenable Nessus	Azure Linux 3.0 Security Update: kernel (CVE-2024-46852)	22 Jan 202600:00	–	nessus
Tenable Nessus	Debian dla-4008 : linux-config-6.1 - security update	3 Jan 202500:00	–	nessus
Tenable Nessus	Debian dsa-5782 : affs-modules-6.1.0-21-4kc-malta-di - security update	3 Oct 202400:00	–	nessus
Tenable Nessus	Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2024-12887)	18 Dec 202400:00	–	nessus
Tenable Nessus	Photon OS 5.0: Linux PHSA-2024-5.0-0378	29 Sep 202400:00	–	nessus
Tenable Nessus	SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:3984-1)	14 Nov 202400:00	–	nessus
Tenable Nessus	SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:3986-1)	14 Nov 202400:00	–	nessus
Tenable Nessus	SUSE SLED15 / SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:4318-1)	14 Dec 202400:00	–	nessus

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2024-46852

21 Apr 2026 04:30Current

7High risk

Vulners AI Score7

CVSS 3.17.8

EPSS0.00008

linux kernel contiguous memory allocator heap fault off by one mapping overflow mremap