Lucene search

K
ubuntucveUbuntu.comUB:CVE-2024-26849
HistoryApr 17, 2024 - 12:00 a.m.

CVE-2024-26849

2024-04-1700:00:00
ubuntu.com
ubuntu.com
7
linux kernel
netlink
vulnerability
resolved
uninit-value bugs
nlattr.c

6.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.5%

In the Linux kernel, the following vulnerability has been resolved:
netlink: add nla be16/32 types to minlen array BUG: KMSAN: uninit-value in
nla_validate_range_unsigned lib/nlattr.c:222 [inline] BUG: KMSAN:
uninit-value in nla_validate_int_range lib/nlattr.c:336 [inline] BUG:
KMSAN: uninit-value in validate_nla lib/nlattr.c:575 [inline] BUG: KMSAN:
uninit-value in __nla_validate_parse+0x2e20/0x45c0 lib/nlattr.c:631
nla_validate_range_unsigned lib/nlattr.c:222 [inline]
nla_validate_int_range lib/nlattr.c:336 [inline] validate_nla
lib/nlattr.c:575 [inline] … The message in question matches this policy:
[NFTA_TARGET_REV] = NLA_POLICY_MAX(NLA_BE32, 255), but because NLA_BE32
size in minlen array is 0, the validation code will read past the malformed
(too small) attribute. Note: Other attributes, e.g. BITFIELD32, SINT,
UINT… are also missing: those likely should be added too.

6.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.5%