-

CVE-2024-35935

EPSS 0.06%
Veröffentlicht 19.05.2024 11:15:49
Zuletzt bearbeitet 21.11.2024 09:21:14
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
Teams Watchlist Login
Unerledigt Login

In the Linux kernel, the following vulnerability has been resolved:

btrfs: send: handle path ref underflow in header iterate_inode_ref()

Change BUG_ON to proper error handling if building the path buffer
fails. The pointers are not printed so we don't accidentally leak kernel
addresses.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 13

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < be2b6bcc936ae17f42fff6494106a5660b35d8d3

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 024529c27c8b4b273325a169e078337c8279e229

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 4720d590c4cb5d9ffa0060b89743651cc7e995f9

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 2f6174fd4ccf403b42b3d5f0d1b6b496a0e5330a

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 9ae356c627b493323e1433dcb27a26917668c07c

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < c1363ed8867b81ea169fba2ccc14af96a85ed183

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 03938619a1e718b6168ae4528e1b0f979293f1a5

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 3c6ee34c6f9cd12802326da26631232a61743501

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version <= 4.19.*

Version 4.19.312

Status unaffected

Version <= 5.4.*

Version 5.4.274

Status unaffected

Version <= 5.10.*

Version 5.10.215

Status unaffected

Version <= 5.15.*

Version 5.15.155

Status unaffected

Version <= 6.1.*

Version 6.1.86

Status unaffected

Version <= 6.6.*

Version 6.6.27

Status unaffected

Version <= 6.8.*

Version 6.8.6

Status unaffected

Version <= *

Version 6.9

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.06%	0.183

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html

https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html

https://git.kernel.org/stable/c/024529c27c8b4b273325a169e078337c8279e229

https://git.kernel.org/stable/c/03938619a1e718b6168ae4528e1b0f979293f1a5

https://git.kernel.org/stable/c/2f6174fd4ccf403b42b3d5f0d1b6b496a0e5330a

https://git.kernel.org/stable/c/3c6ee34c6f9cd12802326da26631232a61743501

https://git.kernel.org/stable/c/4720d590c4cb5d9ffa0060b89743651cc7e995f9

https://git.kernel.org/stable/c/9ae356c627b493323e1433dcb27a26917668c07c

https://git.kernel.org/stable/c/be2b6bcc936ae17f42fff6494106a5660b35d8d3

https://git.kernel.org/stable/c/c1363ed8867b81ea169fba2ccc14af96a85ed183

https://nvd.nist.gov/vuln/detail/CVE-2024-35935

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-35935

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-35935

EUVD