Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
vulnrichmentLinuxVULNRICHMENT:CVE-2024-36903
HistoryMay 30, 2024 - 3:29 p.m.

CVE-2024-36903 ipv6: Fix potential uninit-value access in __ip6_make_skb()

2024-05-3015:29:04
Linux
github.com
1
linux kernel
vulnerability resolved
commit fc1092f51567
ipv4
flowi_flag_known_nh
hdrincl
race condition

6.8 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.5%

JSON

In the Linux kernel, the following vulnerability has been resolved:

ipv6: Fix potential uninit-value access in __ip6_make_skb()

As it was done in commit fc1092f51567 (“ipv4: Fix uninit-value access in
__ip_make_skb()”) for IPv4, check FLOWI_FLAG_KNOWN_NH on fl6->flowi6_flags
instead of testing HDRINCL on the socket to avoid a race condition which
causes uninit-value access.

CNA Affected

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/ipv6/ip6_output.c"
    ],
    "versions": [
      {
        "version": "ea30388baebc",
        "lessThan": "68c8ba16ab71",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "ea30388baebc",
        "lessThan": "2367bf254f3a",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "ea30388baebc",
        "lessThan": "4e13d3a9c25b",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/ipv6/ip6_output.c"
    ],
    "versions": [
      {
        "version": "6.3",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "6.3",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.6.31",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.8.10",
        "lessThanOrEqual": "6.8.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.9",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Related

redhatcve 1
cve 1
ubuntucve 1
nvd 1
debiancve 1
cvelist 1
redhatcve
redhatcve
CVE-2024-36903
2024-06-03 13:33:20
cve
cve
CVE-2024-36903
2024-05-30 16:15:13
ubuntucve
ubuntucve
CVE-2024-36903
2024-05-30 00:00:00
nvd
nvd
CVE-2024-36903
2024-05-30 16:15:13
debiancve
debiancve
CVE-2024-36903
2024-05-30 16:15:13
cvelist
cvelist
CVE-2024-36903 ipv6: Fix potential uninit-value access in __ip6_make_skb()
2024-05-30 15:29:04

6.8 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.5%

JSON
Related for VULNRICHMENT:CVE-2024-36903
redhatcve1cve1ubuntucve1nvd1debiancve1cvelist1