Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatcveRedhat.comRH:CVE-2024-26816
HistoryApr 11, 2024 - 9:22 a.m.

CVE-2024-26816

2024-04-1109:22:48
redhat.com
access.redhat.com
8
linux kernel
vulnerability
resolved
relocation
kaslr
config_xen_pv
.notes section
system.map
x86

7.2 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

13.2%

JSON

In the Linux kernel, the following vulnerability has been resolved: x86, relocs: Ignore relocations in .notes section When building with CONFIG_XEN_PV=y, .text symbols are emitted into the .notes section so that Xen can find the “startup_xen” entry point. This information is used prior to booting the kernel, so relocations are not useful. In fact, performing relocations against the .notes section means that the KASLR base is exposed since /sys/kernel/notes is world-readable. To avoid leaking the KASLR base without breaking unprivileged tools that are expecting to read /sys/kernel/notes, skip performing relocations in the .notes section. The values readable in .notes are then identical to those found in System.map.

Related

cvelist 1
cve 1
vulnrichment 1
nvd 1
debiancve 1
ubuntucve 1
openvas 20
osv 15
nessus 25
ubuntu 6
debian 2
cvelist
cvelist
CVE-2024-26816 x86, relocs: Ignore relocations in .notes section
2024-04-10 13:53:49
cve
cve
CVE-2024-26816
2024-04-10 14:15:07
vulnrichment
vulnrichment
CVE-2024-26816 x86, relocs: Ignore relocations in .notes section
2024-04-10 13:53:49
nvd
nvd
CVE-2024-26816
2024-04-10 14:15:07
debiancve
debiancve
CVE-2024-26816
2024-04-10 14:15:07
ubuntucve
ubuntucve
CVE-2024-26816
2024-04-10 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-5658-1)
2024-04-15 00:00:00
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2024:1642-1)
2024-05-24 00:00:00
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2024:1647-1)
2024-05-24 00:00:00
osv
osv
linux - security update
2024-04-13 00:00:00
linux-gke, linux-ibm, linux-intel-iotg, linux-oracle vulnerabilities
2024-06-07 22:51:46
linux-nvidia vulnerabilities
2024-06-11 20:05:19
nessus
nessus
SUSE SLES15 Security Update : kernel (SUSE-SU-2024:1650-1)
2024-05-16 00:00:00
SUSE SLES15 Security Update : kernel (SUSE-SU-2024:1642-1)
2024-05-15 00:00:00
SUSE SLES15 Security Update : kernel (SUSE-SU-2024:1641-1)
2024-05-15 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2024-06-10 00:00:00
Linux kernel (Azure) vulnerabilities
2024-06-14 00:00:00
Linux kernel vulnerabilities
2024-06-07 00:00:00
debian
debian
[SECURITY] [DSA 5658-1] linux security update
2024-04-13 06:38:27
[SECURITY] [DSA 5681-1] linux security update
2024-05-06 18:31:39

7.2 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

13.2%

JSON
Related for RH:CVE-2024-26816
cvelist1cve1vulnrichment1nvd1debiancve1ubuntucve1openvas20osv15nessus25ubuntu6debian2