Lucene search
K

4 matches found

OSV
OSV
added 2025/01/11 1:15 p.m.2 views

UBUNTU-CVE-2024-56372

In the Linux kernel, the following vulnerability has been resolved: net: tun: fix tunnapiallocfrags syzbot reported the following crash 1 Issue came with the blamed commit. Instead of going through all the iov components, we keep using the first one and end up with a malformed skb. 1 kernel BUG a...

5.5CVSS6.2AI score0.0024EPSS
Exploits0References22
Cvelist
Cvelist
added 2025/01/11 12:35 p.m.17 views

CVE-2024-56372 net: tun: fix tun_napi_alloc_frags()

In the Linux kernel, the following vulnerability has been resolved: net: tun: fix tunnapiallocfrags syzbot reported the following crash 1 Issue came with the blamed commit. Instead of going through all the iov components, we keep using the first one and end up with a malformed skb. 1 kernel BUG a...

0.0024EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2023/11/21 11:20 a.m.2 views

kernel: tun: bugs for oversize packet when napi frags enabled in tun_napi_alloc_frags

An out-of-bounds memory access flaw was found in the Linux kernel’s TUN/TAP device driver functionality in how a user generates a malicious too big networking packet when napi frags is enabled. This flaw allows a local user to crash or potentially escalate their privileges on the system...

7.8CVSS6.7AI score0.00344EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2023/08/07 12:0 a.m.8 views

The vulnerability of the tun_napi_alloc_frags() function in the drivers/net/tun.c module of the Linux TUN/TAP driver allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information, or to enhance their privileges.

The vulnerability of the tunnapiallocfrags function in the drivers/net/tun.c module of the Linux TUN/TAP driver is related to the lack of control over the boundaries of the allocated buffer. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

7.8CVSS6.7AI score0.00344EPSS
Exploits0References19Affected Software6
Rows per page
Query Builder