In the Linux kernel, the following vulnerability has been resolved:
io_uring: clear opcode specific data for an early failure
If failure happens before the opcode prep handler is called, ensure that
we clear the opcode specific area of the request, which holds data
specific to that request type. This prevents errors where opcode
handlers either don’t get to clear per-request private data since prep
isn’t even called.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 18.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 20.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 23.10 | noarch | linux | < any | UNKNOWN |
ubuntu | 24.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 14.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 16.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 18.04 | noarch | linux-aws | < any | UNKNOWN |
ubuntu | 20.04 | noarch | linux-aws | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux-aws | < any | UNKNOWN |
git.kernel.org/linus/e21e1c45e1fe2e31732f40256b49c04e76a17cee (6.9-rc1)
git.kernel.org/stable/c/21162ad2de7446438cbd6224b3794a375bcb24df
git.kernel.org/stable/c/5245a6da27ef79f8dba98dad5542ebe56d311837
git.kernel.org/stable/c/cb1cd176e0b431644653a7fa8691a1aaf7be98da
git.kernel.org/stable/c/e21e1c45e1fe2e31732f40256b49c04e76a17cee
launchpad.net/bugs/cve/CVE-2024-35923
nvd.nist.gov/vuln/detail/CVE-2024-35923
security-tracker.debian.org/tracker/CVE-2024-35923
www.cve.org/CVERecord?id=CVE-2024-35923