Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatcveRedhat.comRH:CVE-2024-26665
HistoryApr 02, 2024 - 11:40 p.m.

CVE-2024-26665

2024-04-0223:40:59
redhat.com
access.redhat.com
6
linux kernel
out of bounds access
tunnels
ipv6 pmtu error
vulnerability

7 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

10.4%

JSON

In the Linux kernel, the following vulnerability has been resolved: tunnels: fix out of bounds access when building IPv6 PMTU error If the ICMPv6 error is built from a non-linear skb we get the following splat, BUG: KASAN: slab-out-of-bounds in do_csum+0x220/0x240 Read of size 4 at addr ffff88811d402c80 by task netperf/820 CPU: 0 PID: 820 Comm: netperf Not tainted 6.8.0-rc1+ #543 … kasan_report+0xd8/0x110 do_csum+0x220/0x240 csum_partial+0xc/0x20 skb_tunnel_check_pmtu+0xeb9/0x3280 vxlan_xmit_one+0x14c2/0x4080 vxlan_xmit+0xf61/0x5c00 dev_hard_start_xmit+0xfb/0x510 __dev_queue_xmit+0x7cd/0x32a0 br_dev_queue_push_xmit+0x39d/0x6a0 Use skb_checksum instead of csum_partial who cannot deal with non-linear SKBs.

Related

ubuntucve 1
cvelist 1
debiancve 1
cve 1
nvd 1
nessus 15
openvas 9
ubuntu 4
osv 7
debian 2
slackware 1
ubuntucve
ubuntucve
CVE-2024-26665
2024-04-02 00:00:00
cvelist
cvelist
CVE-2024-26665 tunnels: fix out of bounds access when building IPv6 PMTU error
2024-04-02 06:22:14
debiancve
debiancve
CVE-2024-26665
2024-04-02 07:15:43
cve
cve
CVE-2024-26665
2024-04-02 07:15:43
nvd
nvd
CVE-2024-26665
2024-04-02 07:15:43
nessus
nessus
Amazon Linux 2023 : bpftool, kernel, kernel-devel (ALAS2023-2024-549)
2024-03-06 00:00:00
Amazon Linux 2 : kernel (ALASKERNEL-5.15-2024-039)
2024-03-06 00:00:00
Amazon Linux 2 : kernel (ALASKERNEL-5.10-2024-053)
2024-04-01 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-6766-2)
2024-05-16 00:00:00
Ubuntu: Security Advisory (USN-6766-3)
2024-05-21 00:00:00
Ubuntu: Security Advisory (USN-6766-1)
2024-05-08 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2024-05-15 00:00:00
Linux kernel vulnerabilities
2024-05-07 00:00:00
Linux kernel (AWS) vulnerabilities
2024-05-20 00:00:00
osv
osv
linux, linux-azure, linux-azure-5.15, linux-azure-fde, linux-azure-fde-5.15, linux-gcp, linux-gcp-5.15, linux-gke, linux-gkeop, linux-gkeop-5.15, linux-ibm, linux-ibm-5.15, linux-kvm, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-nvidia, linux-oracle, linux-oracle-5.15 vulnerabilities
2024-05-07 19:22:43
linux-hwe-5.15, linux-raspi vulnerabilities
2024-05-15 15:15:08
linux-aws, linux-aws-5.15 vulnerabilities
2024-05-20 13:05:13
debian
debian
[SECURITY] [DSA 5658-1] linux security update
2024-04-13 06:38:27
[SECURITY] [DSA 5681-1] linux security update
2024-05-06 18:31:39
slackware
slackware
[slackware-security] Slackware 15.0 kernel
2024-06-05 19:11:11

7 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

10.4%

JSON
Related for RH:CVE-2024-26665
ubuntucve1cvelist1debiancve1cve1nvd1nessus15openvas9ubuntu4osv7debian2slackware1