Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
vulnrichmentLinuxVULNRICHMENT:CVE-2024-36031
HistoryMay 30, 2024 - 3:23 p.m.

CVE-2024-36031 keys: Fix overwrite of key expiration on instantiation

2024-05-3015:23:46
Linux
github.com
8
linux kernel
key expiration
vulnerability
dns resolution
instantiation

AI Score

6.7

Confidence

Low

EPSS

0

Percentile

10.3%

SSVC

Exploitation

none

Automatable

yes

Technical Impact

total

JSON

In the Linux kernel, the following vulnerability has been resolved:

keys: Fix overwrite of key expiration on instantiation

The expiry time of a key is unconditionally overwritten during
instantiation, defaulting to turn it permanent. This causes a problem
for DNS resolution as the expiration set by user-space is overwritten to
TIME64_MAX, disabling further DNS updates. Fix this by restoring the
condition that key_set_expiry is only called when the pre-parser sets a
specific expiry.

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*"
    ],
    "vendor": "linux",
    "product": "linux_kernel",
    "versions": [
      {
        "status": "affected",
        "version": "97be1e865e70",
        "lessThan": "ad2011ea7879",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "cpes": [
      "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
    ],
    "vendor": "linux",
    "product": "linux_kernel",
    "versions": [
      {
        "status": "affected",
        "version": "2552b32b0b34",
        "lessThan": "ed79b93f725c",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "cpes": [
      "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*"
    ],
    "vendor": "linux",
    "product": "linux_kernel",
    "versions": [
      {
        "status": "affected",
        "version": "791d5409cdb9",
        "lessThan": "e4519a016650",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "cpes": [
      "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
    ],
    "vendor": "linux",
    "product": "linux_kernel",
    "versions": [
      {
        "status": "affected",
        "version": "afc360e8a125",
        "lessThan": "25777f3f4e1f",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "cpes": [
      "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
    ],
    "vendor": "linux",
    "product": "linux_kernel",
    "versions": [
      {
        "status": "affected",
        "version": "39299bdd2546",
        "lessThan": "939a08bcd433",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "cpes": [
      "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
    ],
    "vendor": "linux",
    "product": "linux_kernel",
    "versions": [
      {
        "status": "affected",
        "version": "39299bdd2546",
        "lessThan": "cc219cb8afbc",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "cpes": [
      "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
    ],
    "vendor": "linux",
    "product": "linux_kernel",
    "versions": [
      {
        "status": "affected",
        "version": "39299bdd2546",
        "lessThan": "9da27fb65a14",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "cpes": [
      "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*"
    ],
    "vendor": "linux",
    "product": "linux_kernel",
    "versions": [
      {
        "status": "unaffected",
        "version": "6.6.31",
        "versionType": "custom",
        "lessThanOrEqual": "6.6.*"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "cpes": [
      "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
    ],
    "vendor": "linux",
    "product": "linux_kernel",
    "versions": [
      {
        "status": "unaffected",
        "version": "0",
        "lessThan": "6.7",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "cpes": [
      "cpe:2.3:o:linux:linux_kernel:6.7:-:*:*:*:*:*:*"
    ],
    "vendor": "linux",
    "product": "linux_kernel",
    "versions": [
      {
        "status": "affected",
        "version": "6.7"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "cpes": [
      "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
    ],
    "vendor": "linux",
    "product": "linux_kernel",
    "versions": [
      {
        "status": "unaffected",
        "version": "5.10.217",
        "lessThan": "5.11",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "cpes": [
      "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
    ],
    "vendor": "linux",
    "product": "linux_kernel",
    "versions": [
      {
        "status": "unaffected",
        "version": "5.15.159",
        "lessThan": "5.16",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "cpes": [
      "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
    ],
    "vendor": "linux",
    "product": "linux_kernel",
    "versions": [
      {
        "status": "unaffected",
        "version": "6.1.91",
        "lessThan": "6.2",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "cpes": [
      "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
    ],
    "vendor": "linux",
    "product": "linux_kernel",
    "versions": [
      {
        "status": "unaffected",
        "version": "6.8.10",
        "lessThan": "6.9",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "cpes": [
      "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
    ],
    "vendor": "linux",
    "product": "linux_kernel",
    "versions": [
      {
        "status": "unaffected",
        "version": "6.9.1",
        "lessThan": "6.10",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  }
]

Related

osv 15
cvelist 1
redhatcve 1
ubuntucve 1
nvd 1
debiancve 1
cve 1
nessus 23
debian 1
openvas 20
ubuntu 10
mageia 2
osv
osv
CVE-2024-36031
2024-05-30 16:15:00
linux - security update
2024-06-02 00:00:00
linux-5.10 - security update
2024-06-25 00:00:00
cvelist
cvelist
CVE-2024-36031 keys: Fix overwrite of key expiration on instantiation
2024-05-30 15:23:46
redhatcve
redhatcve
CVE-2024-36031
2024-06-03 09:03:01
ubuntucve
ubuntucve
CVE-2024-36031
2024-05-30 00:00:00
nvd
nvd
CVE-2024-36031
2024-05-30 16:15:11
debiancve
debiancve
CVE-2024-36031
2024-05-30 16:15:11
cve
cve
CVE-2024-36031
2024-05-30 16:15:11
nessus
nessus
CentOS 9 : kernel-5.14.0-467.el9
2024-06-24 00:00:00
Amazon Linux 2023 : bpftool, kernel, kernel-devel (ALAS2023-2024-585)
2024-04-17 00:00:00
Amazon Linux 2 : kernel (ALASKERNEL-5.15-2024-041)
2024-04-18 00:00:00
debian
debian
[SECURITY] [DSA 5703-1] linux security update
2024-06-02 17:04:56
openvas
openvas
Debian: Security Advisory (DSA-5703-1)
2024-07-01 00:00:00
Debian: Security Advisory (DLA-3843-1)
2024-07-01 00:00:00
Ubuntu: Security Advisory (USN-6950-2)
2024-08-13 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2024-08-08 00:00:00
Linux kernel (Oracle) vulnerabilities
2024-08-13 00:00:00
Linux kernel (HWE) vulnerabilities
2024-08-21 00:00:00
mageia
mageia
Updated kernel-linus packages fix security vulnerabilities
2024-07-14 08:23:38
Updated kernel kmod-xtables-addons kmod-virtualbox dwarves packages fix security vulnerabilities
2024-07-13 10:54:44

AI Score

6.7

Confidence

Low

EPSS

0

Percentile

10.3%

SSVC

Exploitation

none

Automatable

yes

Technical Impact

total

JSON
Related for VULNRICHMENT:CVE-2024-36031
osv15cvelist1redhatcve1ubuntucve1nvd1debiancve1cve1nessus23debian1openvas20ubuntu10mageia2