IM
IronMonkey Threat Research

CVE-2024-36903 MEDIUM

Published: 2024-05-30 | Last Modified: 2026-07-14 | Status: Modified

Description

In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix potential uninit-value access in __ip6_make_skb() As it was done in commit fc1092f51567 ("ipv4: Fix uninit-value access in __ip_make_skb()") for IPv4, check FLOWI_FLAG_KNOWN_NH on fl6->flowi6_flags instead of testing HDRINCL on the socket to avoid a race condition which causes uninit-value access.

Additional Descriptions (1)

En el kernel de Linux, se resolvió la siguiente vulnerabilidad: ipv6: corrige el posible acceso a valores uninit en __ip6_make_skb() Como se hizo en el commit fc1092f51567 ("ipv4: corrige el acceso a valores uninit en __ip_make_skb()") para IPv4, verifique FLOWI_FLAG_KNOWN_NH en fl6->flowi6_flags en lugar de probar HDRINCL en el socket para evitar una condición de ejecución que provoque acceso a valores uninit.

CVSS Metrics

Base Score: 5.5 (MEDIUM)

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Attack VectorLOCAL
Attack ComplexityLOW
Privileges RequiredLOW
User InteractionNONE
ScopeUNCHANGED
Confidentiality ImpactNONE
Integrity ImpactNONE
Availability ImpactHIGH

Source: [email protected]

Type: Primary

Exploitability Score: 1.8

Impact Score: 3.6

Weaknesses

Source Type Description
[email protected] Primary
en CWE-908

Affected Products

Vendor Product Version Update Type
linux linux_kernel * <built-in method update of dict object at 0x702b703765c0> Operating System
linux linux_kernel * <built-in method update of dict object at 0x702bcc9b3600> Operating System
linux linux_kernel * <built-in method update of dict object at 0x702bde167e40> Operating System
linux linux_kernel * <built-in method update of dict object at 0x702bdd5d4380> Operating System
linux linux_kernel * <built-in method update of dict object at 0x702b70377180> Operating System
linux linux_kernel * <built-in method update of dict object at 0x702bfc1329c0> Operating System
linux linux_kernel * <built-in method update of dict object at 0x702bcc9b1bc0> Operating System
linux linux_kernel * <built-in method update of dict object at 0x702bfc2a4340> Operating System
linux linux_kernel 6.9 <built-in method update of dict object at 0x702bfc2a5900> Operating System
linux linux_kernel 6.9 <built-in method update of dict object at 0x702b70375540> Operating System
linux linux_kernel 6.9 <built-in method update of dict object at 0x702b70374080> Operating System
linux linux_kernel 6.9 <built-in method update of dict object at 0x702b70377c40> Operating System
linux linux_kernel 6.9 <built-in method update of dict object at 0x702bdd128740> Operating System
linux linux_kernel 6.9 <built-in method update of dict object at 0x702bfc2a7040> Operating System
linux linux_kernel 6.9 <built-in method update of dict object at 0x702bfc2a6dc0> Operating System

Affected Configurations

Operator: OR

Vulnerable CPE
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:6.9:rc1:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:6.9:rc2:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:6.9:rc3:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:6.9:rc4:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:6.9:rc5:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:6.9:rc6:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:6.9:rc7:*:*:*:*:*:*
Notification
Message here