4 matches found
CVE-2024-56372
In the Linux kernel, the following vulnerability has been resolved: net: tun: fix tunnapiallocfrags syzbot reported the following crash 1 Issue came with the blamed commit. Instead of going through all the iov components, we keep using the first one and end up with a malformed skb. 1 kernel BUG a...
CVE-2024-56372
In the Linux kernel, the following vulnerability has been resolved: net: tun: fix tunnapiallocfrags syzbot reported the following crash 1 Issue came with the blamed commit. Instead of going through all the iov components, we keep using the first one and end up with a malformed skb. 1 kernel BUG a...
UBUNTU-CVE-2024-56372
In the Linux kernel, the following vulnerability has been resolved: net: tun: fix tunnapiallocfrags syzbot reported the following crash 1 Issue came with the blamed commit. Instead of going through all the iov components, we keep using the first one and end up with a malformed skb. 1 kernel BUG a...
CVE-2024-56372
CVE-2024-56372 affects the Linux kernel net/tun path. The vulnerability stems from tun_napi_alloc_frags() where code paths reuse the first iov component, producing a malformed skb and causing a kernel crash (OOPS) as shown by a syzbot trace in kernel/skbuff.c. The CVSS vector from NVD: Local acce...