Azure Linux 3.0 Security Update: kernel (CVE-2024-36891)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-36891 advisory. - In the Linux kernel, the following vulnerability has been resolved: mapletree: fix masemptyarearev null...

maple_tree: fix mas_empty_area_rev() null pointer dereference

...

The vulnerability of the mas_empty_area_rev() function in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the masemptyarearev function in the lib/mapletree.c module of the Linux kernel is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

CVE-2024-36891 maple_tree: fix mas_empty_area_rev() null pointer dereference

In the Linux kernel, the following vulnerability has been resolved: mapletree: fix masemptyarearev null pointer dereference Currently the code calls masstart followed by masdataend if the maple state is MASTART, but masstart may return with the maple state node == NULL. This will lead to a null...

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a null pointer dereference issue in the masemptyarearev function in the mapletree module...