5.5
CVE-2024-35880
- EPSS 0.14%
- Published 19.05.2024 09:15:09
- Last modified 24.09.2025 21:09:03
- Source 416baaa9-dc9f-4396-8d5f-8c081f
- Teams watchlist Login
- Open Login
In the Linux kernel, the following vulnerability has been resolved: io_uring/kbuf: hold io_buffer_list reference over mmap If we look up the kbuf, ensure that it doesn't get unregistered until after we're done with it. Since we're inside mmap, we cannot safely use the io_uring lock. Rely on the fact that we can lookup the buffer list under RCU now and grab a reference to it, preventing it from being unregistered until we're done with it. The lookup returns the io_buffer_list directly with it referenced.
Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD
This information is available to logged-in users. Login
Data is provided by the National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 6.6.5 < 6.6.26
Linux ≫ Linux Kernel Version >= 6.7.1 < 6.8.5
Linux ≫ Linux Kernel Version6.7 Update-
Linux ≫ Linux Kernel Version6.7 Updaterc4
Linux ≫ Linux Kernel Version6.7 Updaterc5
Linux ≫ Linux Kernel Version6.7 Updaterc6
Linux ≫ Linux Kernel Version6.7 Updaterc7
Linux ≫ Linux Kernel Version6.7 Updaterc8
Linux ≫ Linux Kernel Version6.9 Updaterc1
Linux ≫ Linux Kernel Version6.9 Updaterc2
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.14% | 0.352 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|