5.5
CVE-2024-42080
- EPSS 0.23%
- Veröffentlicht 29.07.2024 16:15:07
- Zuletzt bearbeitet 03.11.2025 22:17:35
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
RDMA/restrack: Fix potential invalid address access
In the Linux kernel, the following vulnerability has been resolved: RDMA/restrack: Fix potential invalid address access struct rdma_restrack_entry's kern_name was set to KBUILD_MODNAME in ib_create_cq(), while if the module exited but forgot del this rdma_restrack_entry, it would cause a invalid address access in rdma_restrack_clean() when print the owner of this rdma_restrack_entry. These code is used to help find one forgotten PD release in one of the ULPs. But it is not needed anymore, so delete them.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version < 5.15.162
Linux ≫ Linux Kernel Version >= 5.16 < 6.1.97
Linux ≫ Linux Kernel Version >= 6.2 < 6.6.37
Linux ≫ Linux Kernel Version >= 6.7 < 6.9.8
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.23% | 0.136 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
CWE-787 Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.
https://git.kernel.org/stable/c/782bdaf9d01658281bc813f3f873e6258aa1fd8d
https://git.kernel.org/stable/c/8656ef8a9288d6c932654f8d3856dc4ab1cfc6b5
https://git.kernel.org/stable/c/8ac281d42337f36cf7061cf1ea094181b84bc1a9
https://git.kernel.org/stable/c/ca537a34775c103f7b14d7bbd976403f1d1525d8
https://git.kernel.org/stable/c/f45b43d17240e9ca67ebf3cc82bb046b07cc1c61
https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html