Lucene search
LinuxVULNRICHMENT:CVE-2024-26828HistoryApr 17, 2024 - 9:43 a.m.
CVE-2024-26828 cifs: fix underflow in parse_server_interfaces()
2024-04-1709:43:52
Linux
github.com
3
cve vulnerability resolution
cifs fix
parse_server_interfaces
linux kernel
In the Linux kernel, the following vulnerability has been resolved:
cifs: fix underflow in parse_server_interfaces()
In this loop, we step through the buffer and after each item we check
if the size_left is greater than the minimum size we need. However,
the problem is that “bytes_left” is type ssize_t while sizeof() is type
size_t. That means that because of type promotion, the comparison is
done as an unsigned and if we have negative bytes left the loop
continues instead of ending.
CNA Affected
[
{
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"product": "Linux",
"versions": [
{
"status": "affected",
"version": "fe856be475f7",
"lessThan": "7190353835b4",
"versionType": "git"
},
{
"status": "affected",
"version": "fe856be475f7",
"lessThan": "f7ff1c89fb6e",
"versionType": "git"
},
{
"status": "affected",
"version": "fe856be475f7",
"lessThan": "df2af9fdbc4d",
"versionType": "git"
},
{
"status": "affected",
"version": "fe856be475f7",
"lessThan": "cffe487026be",
"versionType": "git"
}
],
"programFiles": [
"fs/smb/client/smb2ops.c"
],
"defaultStatus": "unaffected"
},
{
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"product": "Linux",
"versions": [
{
"status": "affected",
"version": "4.18"
},
{
"status": "unaffected",
"version": "0",
"lessThan": "4.18",
"versionType": "custom"
},
{
"status": "unaffected",
"version": "6.1.79",
"versionType": "custom",
"lessThanOrEqual": "6.1.*"
},
{
"status": "unaffected",
"version": "6.6.18",
"versionType": "custom",
"lessThanOrEqual": "6.6.*"
},
{
"status": "unaffected",
"version": "6.7.6",
"versionType": "custom",
"lessThanOrEqual": "6.7.*"
},
{
"status": "unaffected",
"version": "6.8",
"versionType": "original_commit_for_fix",
"lessThanOrEqual": "*"
}
],
"programFiles": [
"fs/smb/client/smb2ops.c"
],
"defaultStatus": "affected"
}
]Related
nvd
nvd
CVE-2024-26828
2024-04-17 10:15:09
debiancve
debiancve
CVE-2024-26828
2024-04-17 10:15:09
cve
cve
CVE-2024-26828
2024-04-17 10:15:09
cvelist
cvelist
CVE-2024-26828 cifs: fix underflow in parse_server_interfaces()
2024-04-17 09:43:52
ubuntucve
ubuntucve
CVE-2024-26828
2024-04-17 00:00:00
redhatcve
redhatcve
CVE-2024-26828
2024-04-17 17:29:22
nessus
nessus
ubuntu
ubuntu
Kernel Live Patch Security Notice
2024-07-16 00:00:00
Linux kernel vulnerabilities
2024-08-02 00:00:00
Linux kernel vulnerabilities
2024-07-16 00:00:00
redhat
redhat
(RHSA-2024:3460) Moderate: kernel-rt security and bug fix update
2024-05-29 07:38:15
(RHSA-2024:3461) Moderate: kernel security and bug fix update
2024-05-29 07:38:15
(RHSA-2024:5363) Important: kernel security update
2024-08-14 00:03:33
osv
osv
Important: kernel security update
2024-08-21 14:53:21
linux-azure-6.5, linux-gcp-6.5 vulnerabilities
2024-07-16 10:12:28
linux, linux-gcp, linux-nvidia-6.5, linux-raspi vulnerabilities
2024-07-12 10:02:16
oraclelinux
oraclelinux
kernel security update
2024-08-14 00:00:00
rocky
rocky
kernel security update
2024-08-21 14:53:21
openvas
openvas
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-2352)
2024-09-10 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-1887)
2024-07-16 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-2140)
2024-08-20 00:00:00
AI Score
7.1
Confidence
Low
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2024-26828