Lucene search
K

35 matches found

OSV
OSV
added 2024/03/18 11:15 a.m.2 views

DEBIAN-CVE-2024-26641

In the Linux kernel, the following vulnerability has been resolved: ip6tunnel: make sure to pull inner header in ip6tnlrcv syzbot found ip6tnlrcv could access unitiliazed data 1. Call pskbinetmaypull to fix this, and initialize ipv6h variable after this call as it can change skb-head. 1 BUG: KMSA...

5.5CVSS5.5AI score0.00241EPSS
Exploits0References1
NVD
NVD
added 2024/03/18 11:15 a.m.24 views

CVE-2024-26641

In the Linux kernel, the following vulnerability has been resolved: ip6tunnel: make sure to pull inner header in ip6tnlrcv syzbot found ip6tnlrcv could access unitiliazed data 1. Call pskbinetmaypull to fix this, and initialize ipv6h variable after this call as it can change skb-head. 1 BUG: KMSA...

5.5CVSS7.3AI score0.00241EPSS
Exploits0References8
OSV
OSV
added 2024/03/18 11:15 a.m.5 views

DEBIAN-CVE-2024-26633

In the Linux kernel, the following vulnerability has been resolved: ip6tunnel: fix NEXTHDRFRAGMENT handling in ip6tnlparsetlvenclim syzbot pointed out 1 that NEXTHDRFRAGMENT handling is broken. Reading fragoff can only be done if we pulled enough bytes to skb-head. Currently we might access...

5.5CVSS5.5AI score0.0033EPSS
Exploits0References1
NVD
NVD
added 2024/03/18 11:15 a.m.38 views

CVE-2024-26633

In the Linux kernel, the following vulnerability has been resolved: ip6tunnel: fix NEXTHDRFRAGMENT handling in ip6tnlparsetlvenclim syzbot pointed out 1 that NEXTHDRFRAGMENT handling is broken. Reading fragoff can only be done if we pulled enough bytes to skb-head. Currently we might access...

5.5CVSS7.4AI score0.0033EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2024/03/18 11:15 a.m.41 views

CVE-2024-26641

In the Linux kernel, the following vulnerability has been resolved: ip6tunnel: make sure to pull inner header in ip6tnlrcv syzbot found ip6tnlrcv could access unitiliazed data 1. Call pskbinetmaypull to fix this, and initialize ipv6h variable after this call as it can change skb-head. 1 BUG: KMSA...

5.5CVSS6.3AI score0.00241EPSS
Exploits0References29
UbuntuCve
UbuntuCve
added 2024/03/18 11:15 a.m.41 views

CVE-2024-26633

In the Linux kernel, the following vulnerability has been resolved: ip6tunnel: fix NEXTHDRFRAGMENT handling in ip6tnlparsetlvenclim syzbot pointed out 1 that NEXTHDRFRAGMENT handling is broken. Reading fragoff can only be done if we pulled enough bytes to skb-head. Currently we might access...

5.5CVSS6.3AI score0.0033EPSS
Exploits0References27
Vulnrichment
Vulnrichment
added 2024/03/18 10:19 a.m.38 views

CVE-2024-26641 ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv()

In the Linux kernel, the following vulnerability has been resolved: ip6tunnel: make sure to pull inner header in ip6tnlrcv syzbot found ip6tnlrcv could access unitiliazed data 1. Call pskbinetmaypull to fix this, and initialize ipv6h variable after this call as it can change skb-head. 1 BUG: KMSA...

6.6AI score0.00241EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2024/03/18 10:19 a.m.39 views

CVE-2024-26641

In the Linux kernel, the following vulnerability has been resolved: ip6tunnel: make sure to pull inner header in ip6tnlrcv syzbot found ip6tnlrcv could access unitiliazed data 1. Call pskbinetmaypull to fix this, and initialize ipv6h variable after this call as it can change skb-head. 1 BUG: KMSA...

5.5CVSS7.5AI score0.00241EPSS
Exploits0
CVE
CVE
added 2024/03/18 10:19 a.m.210 views

CVE-2024-26641

CVE-2024-26641 affects the Linux kernel’s IPv6/IP tunneling path. The issue arises in ip6_tunnel when receiving inner headers in __ip6_tnl_rcv(), which could access uninitialized data via a chained path (KMSAN warnings). The fix, as described in the description, is to call pskb_inet_may_pull() to...

5.5CVSS6.1AI score0.00241EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2024/03/18 10:19 a.m.40 views

CVE-2024-26641 ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv()

In the Linux kernel, the following vulnerability has been resolved: ip6tunnel: make sure to pull inner header in ip6tnlrcv syzbot found ip6tnlrcv could access unitiliazed data 1. Call pskbinetmaypull to fix this, and initialize ipv6h variable after this call as it can change skb-head. 1 BUG: KMSA...

7.5AI score0.00241EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2024/03/18 10:7 a.m.21 views

CVE-2024-26633 ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim()

In the Linux kernel, the following vulnerability has been resolved: ip6tunnel: fix NEXTHDRFRAGMENT handling in ip6tnlparsetlvenclim syzbot pointed out 1 that NEXTHDRFRAGMENT handling is broken. Reading fragoff can only be done if we pulled enough bytes to skb-head. Currently we might access...

6.7AI score0.0033EPSS
Exploits0References8
Cvelist
Cvelist
added 2024/03/18 10:7 a.m.22 views

CVE-2024-26633 ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim()

In the Linux kernel, the following vulnerability has been resolved: ip6tunnel: fix NEXTHDRFRAGMENT handling in ip6tnlparsetlvenclim syzbot pointed out 1 that NEXTHDRFRAGMENT handling is broken. Reading fragoff can only be done if we pulled enough bytes to skb-head. Currently we might access...

7.7AI score0.0033EPSS
Exploits0References8
CVE
CVE
added 2024/03/18 10:7 a.m.204 views

CVE-2024-26633

CVE-2024-26633 affects the Linux kernel’s ip6_tunnel code, specifically the NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim(). Syzbot reported that frag_off could be read before enough bytes were pulled into skb->head, causing reads of uninitialized or garbage data. The issue is exposed...

5.5CVSS6.7AI score0.0033EPSS
Exploits0References11Affected Software1
Debian CVE
Debian CVE
added 2024/03/18 10:7 a.m.24 views

CVE-2024-26633

In the Linux kernel, the following vulnerability has been resolved: ip6tunnel: fix NEXTHDRFRAGMENT handling in ip6tnlparsetlvenclim syzbot pointed out 1 that NEXTHDRFRAGMENT handling is broken. Reading fragoff can only be done if we pulled enough bytes to skb-head. Currently we might access...

5.5CVSS7.4AI score0.0033EPSS
Exploits0
Oracle linux
Oracle linux
added 2021/07/16 12:0 a.m.529 views

Unbreakable Enterprise kernel-container security update

5.4.17-2102.203.5 - rds/ib: move rdsibclearirqmiss to .h file Manjunath Patil Orabug: 33044344 5.4.17-2102.203.4 - rds/ib: recover rds connection from interrupt loss scenario Manjunath Patil Orabug: 32974199 - Revert 'Allow mce to reset instead of panic on UE' William Roche Orabug: 32820275 - bpf...

7.8CVSS0.1AI score0.03259EPSS
Exploits6
Rows per page
Query Builder