CVE-2024-42311

🗓️ 19 Aug 2024 14:16:04Reported by redhat.comType

redhatcve

redhatcve🔗 access.redhat.com👁 20 Views

In Linux kernel, CVE-2024-42311 resolved: hfs: fix uninitialized fields of hfs_inode_info after hfs_alloc_inode(

Reporter	Title	Published	Views	Family All 243
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2-2025-2777 (ALAS-2025-2777)	10 Mar 202500:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.10-2025-084 (ALASKERNEL-5.10-2025-084)	27 Mar 202500:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.4-2025-095 (ALASKERNEL-5.4-2025-095)	27 Mar 202500:00	–	nessus
Tenable Nessus	Debian dla-3912 : ata-modules-5.10.0-29-armmp-di - security update	7 Oct 202400:00	–	nessus
Tenable Nessus	Debian dla-4008 : linux-config-6.1 - security update	3 Jan 202500:00	–	nessus
Tenable Nessus	CBL Mariner 2.0 Security Update: kernel (CVE-2024-42311)	13 Oct 202400:00	–	nessus
Tenable Nessus	Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2024-12780)	14 Oct 202400:00	–	nessus
Tenable Nessus	Oracle Linux 7 / 8 : Unbreakable Enterprise kernel-container (ELSA-2024-12782)	14 Oct 202400:00	–	nessus
Tenable Nessus	Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2024-12815)	13 Nov 202400:00	–	nessus
Tenable Nessus	Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2024-12868)	9 Dec 202400:00	–	nessus

Source	Link
cve	www.cve.org/CVERecord
nvd	www.nvd.nist.gov/vuln/detail/CVE-2024-42311
lore	www.lore.kernel.org/linux-cve-announce/2024081752-CVE-2024-42311-f825@gregkh/T
bugzilla	www.bugzilla.redhat.com/show_bug.cgi

18 Sep 2024 16:16Current

5.3Medium risk

Vulners AI Score5.3

CVSS 3.15.5

EPSS0.00021

linux kernel cve-2024-42311 hfs_inode_info hfs_alloc_inode vulnerability uninitialized value access syzbot hfs_inode_info hfs_revalidate_dentry hfs_ext_read_extent