cvelistv5 - CVE-2024-26622

CVE-2024-26622

Vulnerability from cvelistv5

Published

2024-03-04 06:40

Modified

2024-12-19 08:43

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: tomoyo: fix UAF write bug in tomoyo_write_control() Since tomoyo_write_control() updates head->write_buf when write() of long lines is requested, we need to fetch head->write_buf after head->io_sem is held. Otherwise, concurrent write() requests can cause use-after-free-write and double-free problems.

References

URL	Tags
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/2caa605079488da9601099fbda460cfc1702839f	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/2f03fc340cac9ea1dc63cbf8c93dd2eb0f227815	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/3bfe04c1273d30b866f4c7c238331ed3b08e5824	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/6edefe1b6c29a9932f558a898968a9fcbeec5711	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/7d930a4da17958f869ef679ee0e4a8729337affc	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/a23ac1788e2c828c097119e9a3178f0b7e503fee	Patch
af854a3a-2127-422b-91ae-364da2661108	https://git.kernel.org/stable/c/2caa605079488da9601099fbda460cfc1702839f	Patch
af854a3a-2127-422b-91ae-364da2661108	https://git.kernel.org/stable/c/2f03fc340cac9ea1dc63cbf8c93dd2eb0f227815	Patch
af854a3a-2127-422b-91ae-364da2661108	https://git.kernel.org/stable/c/3bfe04c1273d30b866f4c7c238331ed3b08e5824	Patch
af854a3a-2127-422b-91ae-364da2661108	https://git.kernel.org/stable/c/6edefe1b6c29a9932f558a898968a9fcbeec5711	Patch
af854a3a-2127-422b-91ae-364da2661108	https://git.kernel.org/stable/c/7d930a4da17958f869ef679ee0e4a8729337affc	Patch
af854a3a-2127-422b-91ae-364da2661108	https://git.kernel.org/stable/c/a23ac1788e2c828c097119e9a3178f0b7e503fee	Patch
af854a3a-2127-422b-91ae-364da2661108	https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html	Patch

Impacted products

Vendor

Product

Version

▼

Linux

Version: bd03a3e4c9a9df0c6b007045fa7fc8889111a478
Version: bd03a3e4c9a9df0c6b007045fa7fc8889111a478
Version: bd03a3e4c9a9df0c6b007045fa7fc8889111a478
Version: bd03a3e4c9a9df0c6b007045fa7fc8889111a478
Version: bd03a3e4c9a9df0c6b007045fa7fc8889111a478
Version: bd03a3e4c9a9df0c6b007045fa7fc8889111a478

Linux

Version: 3.1

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:07:19.842Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a23ac1788e2c828c097119e9a3178f0b7e503fee"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7d930a4da17958f869ef679ee0e4a8729337affc"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/3bfe04c1273d30b866f4c7c238331ed3b08e5824"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2caa605079488da9601099fbda460cfc1702839f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/6edefe1b6c29a9932f558a898968a9fcbeec5711"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2f03fc340cac9ea1dc63cbf8c93dd2eb0f227815"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26622",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:56:14.798653Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:34.406Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "security/tomoyo/common.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "a23ac1788e2c828c097119e9a3178f0b7e503fee",
              "status": "affected",
              "version": "bd03a3e4c9a9df0c6b007045fa7fc8889111a478",
              "versionType": "git"
            },
            {
              "lessThan": "7d930a4da17958f869ef679ee0e4a8729337affc",
              "status": "affected",
              "version": "bd03a3e4c9a9df0c6b007045fa7fc8889111a478",
              "versionType": "git"
            },
            {
              "lessThan": "3bfe04c1273d30b866f4c7c238331ed3b08e5824",
              "status": "affected",
              "version": "bd03a3e4c9a9df0c6b007045fa7fc8889111a478",
              "versionType": "git"
            },
            {
              "lessThan": "2caa605079488da9601099fbda460cfc1702839f",
              "status": "affected",
              "version": "bd03a3e4c9a9df0c6b007045fa7fc8889111a478",
              "versionType": "git"
            },
            {
              "lessThan": "6edefe1b6c29a9932f558a898968a9fcbeec5711",
              "status": "affected",
              "version": "bd03a3e4c9a9df0c6b007045fa7fc8889111a478",
              "versionType": "git"
            },
            {
              "lessThan": "2f03fc340cac9ea1dc63cbf8c93dd2eb0f227815",
              "status": "affected",
              "version": "bd03a3e4c9a9df0c6b007045fa7fc8889111a478",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "security/tomoyo/common.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "3.1"
            },
            {
              "lessThan": "3.1",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.212",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.151",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.81",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.21",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.9",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ntomoyo: fix UAF write bug in tomoyo_write_control()\n\nSince tomoyo_write_control() updates head-\u003ewrite_buf when write()\nof long lines is requested, we need to fetch head-\u003ewrite_buf after\nhead-\u003eio_sem is held.  Otherwise, concurrent write() requests can\ncause use-after-free-write and double-free problems."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-12-19T08:43:42.948Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/a23ac1788e2c828c097119e9a3178f0b7e503fee"
        },
        {
          "url": "https://git.kernel.org/stable/c/7d930a4da17958f869ef679ee0e4a8729337affc"
        },
        {
          "url": "https://git.kernel.org/stable/c/3bfe04c1273d30b866f4c7c238331ed3b08e5824"
        },
        {
          "url": "https://git.kernel.org/stable/c/2caa605079488da9601099fbda460cfc1702839f"
        },
        {
          "url": "https://git.kernel.org/stable/c/6edefe1b6c29a9932f558a898968a9fcbeec5711"
        },
        {
          "url": "https://git.kernel.org/stable/c/2f03fc340cac9ea1dc63cbf8c93dd2eb0f227815"
        }
      ],
      "title": "tomoyo: fix UAF write bug in tomoyo_write_control()",
      "x_generator": {
        "engine": "bippy-5f407fcff5a0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26622",
    "datePublished": "2024-03-04T06:40:01.754Z",
    "dateReserved": "2024-02-19T14:20:24.134Z",
    "dateUpdated": "2024-12-19T08:43:42.948Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2024-26622\",\"sourceIdentifier\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"published\":\"2024-03-04T07:15:11.063\",\"lastModified\":\"2024-12-11T17:36:15.267\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel, the following vulnerability has been resolved:\\n\\ntomoyo: fix UAF write bug in tomoyo_write_control()\\n\\nSince tomoyo_write_control() updates head-\u003ewrite_buf when write()\\nof long lines is requested, we need to fetch head-\u003ewrite_buf after\\nhead-\u003eio_sem is held.  Otherwise, concurrent write() requests can\\ncause use-after-free-write and double-free problems.\"},{\"lang\":\"es\",\"value\":\"En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: tomoyo: corrige el error de escritura UAF en tomoyo_write_control() Dado que tomoyo_write_control() actualiza head-\u0026gt;write_buf cuando se solicita write() de l\u00edneas largas, necesitamos recuperar head-\u0026gt;write_buf despu\u00e9s head-\u0026gt;io_sem se mantiene. De lo contrario, las solicitudes de escritura () simult\u00e1neas pueden causar problemas de use-after-free-write y de doble liberaci\u00f3n.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-416\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.1\",\"versionEndExcluding\":\"5.10.212\",\"matchCriteriaId\":\"1E2BB29C-D9B8-41F8-AF04-96900D47051A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.11\",\"versionEndExcluding\":\"5.15.151\",\"matchCriteriaId\":\"EEAFD33E-C22F-4FB1-A417-9C96AB3E0358\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.16\",\"versionEndExcluding\":\"6.1.81\",\"matchCriteriaId\":\"EC825B0E-DFCA-4034-9B92-F111A4E2A732\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.2\",\"versionEndExcluding\":\"6.6.21\",\"matchCriteriaId\":\"B19074A2-9FE5-4E7D-9E2D-020F95013ADA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.7\",\"versionEndExcluding\":\"6.7.9\",\"matchCriteriaId\":\"1C538467-EDA0-4A9A-82EB-2925DE9FF827\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.8:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"B9F4EA73-0894-400F-A490-3A397AB7A517\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.8:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"056BD938-0A27-4569-B391-30578B309EE3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.8:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"F02056A5-B362-4370-9FF8-6F0BD384D520\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.8:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"62075ACE-B2A0-4B16-829D-B3DA5AE5CC41\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.8:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"A780F817-2A77-4130-A9B7-5C25606314E3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.8:rc6:*:*:*:*:*:*\",\"matchCriteriaId\":\"AEB9199B-AB8F-4877-8964-E2BA95B5F15C\"}]}]}],\"references\":[{\"url\":\"https://git.kernel.org/stable/c/2caa605079488da9601099fbda460cfc1702839f\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/2f03fc340cac9ea1dc63cbf8c93dd2eb0f227815\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/3bfe04c1273d30b866f4c7c238331ed3b08e5824\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/6edefe1b6c29a9932f558a898968a9fcbeec5711\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/7d930a4da17958f869ef679ee0e4a8729337affc\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/a23ac1788e2c828c097119e9a3178f0b7e503fee\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/2caa605079488da9601099fbda460cfc1702839f\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/2f03fc340cac9ea1dc63cbf8c93dd2eb0f227815\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/3bfe04c1273d30b866f4c7c238331ed3b08e5824\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/6edefe1b6c29a9932f558a898968a9fcbeec5711\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/7d930a4da17958f869ef679ee0e4a8729337affc\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/a23ac1788e2c828c097119e9a3178f0b7e503fee\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://git.kernel.org/stable/c/a23ac1788e2c828c097119e9a3178f0b7e503fee\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/7d930a4da17958f869ef679ee0e4a8729337affc\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/3bfe04c1273d30b866f4c7c238331ed3b08e5824\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/2caa605079488da9601099fbda460cfc1702839f\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/6edefe1b6c29a9932f558a898968a9fcbeec5711\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/2f03fc340cac9ea1dc63cbf8c93dd2eb0f227815\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T00:07:19.842Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-26622\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-09-10T15:56:14.798653Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-09-11T12:42:17.390Z\"}}], \"cna\": {\"title\": \"tomoyo: fix UAF write bug in tomoyo_write_control()\", \"affected\": [{\"repo\": \"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\", \"vendor\": \"Linux\", \"product\": \"Linux\", \"versions\": [{\"status\": \"affected\", \"version\": \"bd03a3e4c9a9df0c6b007045fa7fc8889111a478\", \"lessThan\": \"a23ac1788e2c828c097119e9a3178f0b7e503fee\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"bd03a3e4c9a9df0c6b007045fa7fc8889111a478\", \"lessThan\": \"7d930a4da17958f869ef679ee0e4a8729337affc\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"bd03a3e4c9a9df0c6b007045fa7fc8889111a478\", \"lessThan\": \"3bfe04c1273d30b866f4c7c238331ed3b08e5824\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"bd03a3e4c9a9df0c6b007045fa7fc8889111a478\", \"lessThan\": \"2caa605079488da9601099fbda460cfc1702839f\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"bd03a3e4c9a9df0c6b007045fa7fc8889111a478\", \"lessThan\": \"6edefe1b6c29a9932f558a898968a9fcbeec5711\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"bd03a3e4c9a9df0c6b007045fa7fc8889111a478\", \"lessThan\": \"2f03fc340cac9ea1dc63cbf8c93dd2eb0f227815\", \"versionType\": \"git\"}], \"programFiles\": [\"security/tomoyo/common.c\"], \"defaultStatus\": \"unaffected\"}, {\"repo\": \"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\", \"vendor\": \"Linux\", \"product\": \"Linux\", \"versions\": [{\"status\": \"affected\", \"version\": \"3.1\"}, {\"status\": \"unaffected\", \"version\": \"0\", \"lessThan\": \"3.1\", \"versionType\": \"semver\"}, {\"status\": \"unaffected\", \"version\": \"5.10.212\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"5.10.*\"}, {\"status\": \"unaffected\", \"version\": \"5.15.151\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"5.15.*\"}, {\"status\": \"unaffected\", \"version\": \"6.1.81\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.1.*\"}, {\"status\": \"unaffected\", \"version\": \"6.6.21\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.6.*\"}, {\"status\": \"unaffected\", \"version\": \"6.7.9\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.7.*\"}, {\"status\": \"unaffected\", \"version\": \"6.8\", \"versionType\": \"original_commit_for_fix\", \"lessThanOrEqual\": \"*\"}], \"programFiles\": [\"security/tomoyo/common.c\"], \"defaultStatus\": \"affected\"}], \"references\": [{\"url\": \"https://git.kernel.org/stable/c/a23ac1788e2c828c097119e9a3178f0b7e503fee\"}, {\"url\": \"https://git.kernel.org/stable/c/7d930a4da17958f869ef679ee0e4a8729337affc\"}, {\"url\": \"https://git.kernel.org/stable/c/3bfe04c1273d30b866f4c7c238331ed3b08e5824\"}, {\"url\": \"https://git.kernel.org/stable/c/2caa605079488da9601099fbda460cfc1702839f\"}, {\"url\": \"https://git.kernel.org/stable/c/6edefe1b6c29a9932f558a898968a9fcbeec5711\"}, {\"url\": \"https://git.kernel.org/stable/c/2f03fc340cac9ea1dc63cbf8c93dd2eb0f227815\"}], \"x_generator\": {\"engine\": \"bippy-5f407fcff5a0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"In the Linux kernel, the following vulnerability has been resolved:\\n\\ntomoyo: fix UAF write bug in tomoyo_write_control()\\n\\nSince tomoyo_write_control() updates head-\u003ewrite_buf when write()\\nof long lines is requested, we need to fetch head-\u003ewrite_buf after\\nhead-\u003eio_sem is held.  Otherwise, concurrent write() requests can\\ncause use-after-free-write and double-free problems.\"}], \"providerMetadata\": {\"orgId\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\", \"shortName\": \"Linux\", \"dateUpdated\": \"2024-12-19T08:43:42.948Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2024-26622\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-12-19T08:43:42.948Z\", \"dateReserved\": \"2024-02-19T14:20:24.134Z\", \"assignerOrgId\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\", \"datePublished\": \"2024-03-04T06:40:01.754Z\", \"assignerShortName\": \"Linux\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

ghsa-hmvg-cx6j-hfj7

Vulnerability from github

Published

2024-03-04 09:30

Modified

2024-12-11 18:30

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

In the Linux kernel, the following vulnerability has been resolved:

tomoyo: fix UAF write bug in tomoyo_write_control()

Since tomoyo_write_control() updates head->write_buf when write() of long lines is requested, we need to fetch head->write_buf after head->io_sem is held. Otherwise, concurrent write() requests can cause use-after-free-write and double-free problems.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2024-26622"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-416"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2024-03-04T07:15:11Z",
    "severity": "HIGH"
  },
  "details": "In the Linux kernel, the following vulnerability has been resolved:\n\ntomoyo: fix UAF write bug in tomoyo_write_control()\n\nSince tomoyo_write_control() updates head-\u003ewrite_buf when write()\nof long lines is requested, we need to fetch head-\u003ewrite_buf after\nhead-\u003eio_sem is held.  Otherwise, concurrent write() requests can\ncause use-after-free-write and double-free problems.",
  "id": "GHSA-hmvg-cx6j-hfj7",
  "modified": "2024-12-11T18:30:36Z",
  "published": "2024-03-04T09:30:29Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26622"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/2caa605079488da9601099fbda460cfc1702839f"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/2f03fc340cac9ea1dc63cbf8c93dd2eb0f227815"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/3bfe04c1273d30b866f4c7c238331ed3b08e5824"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/6edefe1b6c29a9932f558a898968a9fcbeec5711"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/7d930a4da17958f869ef679ee0e4a8729337affc"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/a23ac1788e2c828c097119e9a3178f0b7e503fee"
    },
    {
      "type": "WEB",
      "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IVVYSTEVMPYGF6GDSOD44MUXZXAZHOHB"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KSXNF4RLEFLH35BFUQGYXRRVHHUIVBAE"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

WID-SEC-W-2024-0536

Vulnerability from csaf_certbund

Published

2024-03-03 23:00

Modified

2025-01-19 23:00

Summary

Linux Kernel: Schwachstelle ermöglicht nicht spezifizierten Angriff

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

Der Kernel stellt den Kern des Linux Betriebssystems dar.

Angriff

Ein lokaler Angreifer kann eine Schwachstelle im Linux Kernel ausnutzen, um einen nicht näher spezifizierten Angriff durchzuführen.

Betroffene Betriebssysteme

- Linux

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Der Kernel stellt den Kern des Linux Betriebssystems dar.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein lokaler Angreifer kann eine Schwachstelle im Linux Kernel ausnutzen, um einen nicht n\u00e4her spezifizierten Angriff durchzuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-0536 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0536.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-0536 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0536"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-03",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26622"
      },
      {
        "category": "external",
        "summary": "Git.Kernel.org vom 2024-03-03",
        "url": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=2f03fc340cac9ea1dc63cbf8c93dd2eb0f227815"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2024-5DB5954A5E vom 2024-03-06",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-5db5954a5e"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2024-F797F1540E vom 2024-03-06",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-f797f1540e"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0855-1 vom 2024-03-12",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-March/018151.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0856-1 vom 2024-03-13",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-March/018155.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0857-1 vom 2024-03-13",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-March/018154.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0858-1 vom 2024-03-13",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-March/018153.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0900-1 vom 2024-03-14",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-March/018167.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0900-2 vom 2024-03-15",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-March/018182.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0910-1 vom 2024-03-15",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-March/018181.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0976-1 vom 2024-03-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-March/018185.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0975-1 vom 2024-03-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-March/018186.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0926-1 vom 2024-03-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-March/018204.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0925-1 vom 2024-03-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-March/018205.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0977-1 vom 2024-03-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-March/018210.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1359-1 vom 2024-04-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018389.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1358-1 vom 2024-04-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018390.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1362-1 vom 2024-04-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018388.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1364-1 vom 2024-04-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018387.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1386-1 vom 2024-04-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018397.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1380-1 vom 2024-04-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018398.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1390-1 vom 2024-04-23",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018402.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1391-1 vom 2024-04-23",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018400.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1388-1 vom 2024-04-23",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018401.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1409-1 vom 2024-04-23",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018413.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1405-1 vom 2024-04-23",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018406.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1406-1 vom 2024-04-23",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018414.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1410-1 vom 2024-04-23",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018412.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1411-1 vom 2024-04-24",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018415.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-5681 vom 2024-05-06",
        "url": "https://lists.debian.org/debian-security-announce/2024/msg00090.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1562-1 vom 2024-05-08",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018484.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1558-1 vom 2024-05-08",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018485.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1580-1 vom 2024-05-09",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018493.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1582-1 vom 2024-05-10",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018497.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1596-1 vom 2024-05-10",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018504.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6776-1 vom 2024-05-16",
        "url": "https://ubuntu.com/security/notices/USN-6776-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6777-1 vom 2024-05-16",
        "url": "https://ubuntu.com/security/notices/USN-6777-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6778-1 vom 2024-05-16",
        "url": "https://ubuntu.com/security/notices/USN-6778-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6775-1 vom 2024-05-16",
        "url": "https://ubuntu.com/security/notices/USN-6775-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6774-1 vom 2024-05-16",
        "url": "https://ubuntu.com/security/notices/USN-6774-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6777-2 vom 2024-05-20",
        "url": "https://ubuntu.com/security/notices/USN-6777-2"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1682-1 vom 2024-05-20",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018546.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1711-1 vom 2024-05-21",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018571.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6775-2 vom 2024-05-22",
        "url": "https://ubuntu.com/security/notices/USN-6775-2"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6777-3 vom 2024-05-22",
        "url": "https://ubuntu.com/security/notices/USN-6777-3"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1749-1 vom 2024-05-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018587.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6777-4 vom 2024-05-23",
        "url": "https://ubuntu.com/security/notices/USN-6777-4"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6795-1 vom 2024-05-28",
        "url": "https://ubuntu.com/security/notices/USN-6795-1"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2024-12385 vom 2024-06-05",
        "url": "https://oss.oracle.com/pipermail/el-errata/2024-June/015807.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6828-1 vom 2024-06-11",
        "url": "https://ubuntu.com/security/notices/USN-6828-1"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:2092-1 vom 2024-06-19",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-June/018765.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:2162-1 vom 2024-06-21",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-June/018785.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:2207-1 vom 2024-06-25",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-June/018824.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-3842 vom 2024-06-25",
        "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:2337-1 vom 2024-07-08",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-July/018881.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:2446-1 vom 2024-07-12",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-July/018947.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:2722-1 vom 2024-08-02",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-August/019090.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:2824-1 vom 2024-08-08",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-August/019152.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:2850-1 vom 2024-08-08",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-August/019144.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3379-1 vom 2024-09-23",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-September/019489.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3399-1 vom 2024-09-23",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-September/019499.html"
      },
      {
        "category": "external",
        "summary": "Dell Security Advisory DSA-2024-422 vom 2024-10-10",
        "url": "https://www.dell.com/support/kbdoc/de-de/000234730/dsa-2024-422-security-update-for-dell-networker-vproxy-multiple-component-vulnerabilities"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3631-1 vom 2024-10-15",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/VBN5S6CN75ZWGV3ZNRLZRMQ5DF3HMBZE/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3694-1 vom 2024-10-16",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/Y2P3R5HQ4Z7AYZLBXUGXBJMITFENT5NV/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3829-1 vom 2024-10-30",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/RMOWLUMWUZKBWNWZRVPCJY43YUOMCMJ7/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3793-1 vom 2024-10-30",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-October/019702.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3852-1 vom 2024-10-31",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/CJCHUFTBOJTQRE24NTRP6WMCK5BGPZ3N/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:4122-1 vom 2024-12-02",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-December/019885.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:4218-1 vom 2024-12-06",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/4UVNDL3CU4NHVPE7QELR2N5HRCDSMYEV/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:4234-1 vom 2024-12-06",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/B6RMLGICBLD3BNXSBS7J23W3GCEJMFJA/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:0107-1 vom 2025-01-14",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020112.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:0158-1 vom 2025-01-17",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020154.html"
      }
    ],
    "source_lang": "en-US",
    "title": "Linux Kernel: Schwachstelle erm\u00f6glicht nicht spezifizierten Angriff",
    "tracking": {
      "current_release_date": "2025-01-19T23:00:00.000+00:00",
      "generator": {
        "date": "2025-01-20T09:28:00.989+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.10"
        }
      },
      "id": "WID-SEC-W-2024-0536",
      "initial_release_date": "2024-03-03T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-03-03T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2024-03-06T23:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Fedora aufgenommen"
        },
        {
          "date": "2024-03-12T23:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-03-14T23:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-03-17T23:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-03-24T23:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-04-21T22:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-04-22T22:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-04-23T22:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-05-06T22:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2024-05-09T22:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-05-12T22:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-05-16T22:00:00.000+00:00",
          "number": "13",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2024-05-20T22:00:00.000+00:00",
          "number": "14",
          "summary": "Neue Updates von Ubuntu und SUSE aufgenommen"
        },
        {
          "date": "2024-05-21T22:00:00.000+00:00",
          "number": "15",
          "summary": "Neue Updates von SUSE und Ubuntu aufgenommen"
        },
        {
          "date": "2024-05-22T22:00:00.000+00:00",
          "number": "16",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-05-23T22:00:00.000+00:00",
          "number": "17",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2024-05-28T22:00:00.000+00:00",
          "number": "18",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2024-06-05T22:00:00.000+00:00",
          "number": "19",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2024-06-11T22:00:00.000+00:00",
          "number": "20",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2024-06-19T22:00:00.000+00:00",
          "number": "21",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-06-23T22:00:00.000+00:00",
          "number": "22",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-06-25T22:00:00.000+00:00",
          "number": "23",
          "summary": "Neue Updates von SUSE und Debian aufgenommen"
        },
        {
          "date": "2024-07-08T22:00:00.000+00:00",
          "number": "24",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-07-14T22:00:00.000+00:00",
          "number": "25",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-08-04T22:00:00.000+00:00",
          "number": "26",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-08-08T22:00:00.000+00:00",
          "number": "27",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-09-22T22:00:00.000+00:00",
          "number": "28",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-09-23T22:00:00.000+00:00",
          "number": "29",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-10-09T22:00:00.000+00:00",
          "number": "30",
          "summary": "Neue Updates von Dell aufgenommen"
        },
        {
          "date": "2024-10-15T22:00:00.000+00:00",
          "number": "31",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-10-16T22:00:00.000+00:00",
          "number": "32",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-10-30T23:00:00.000+00:00",
          "number": "33",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-10-31T23:00:00.000+00:00",
          "number": "34",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-12-02T23:00:00.000+00:00",
          "number": "35",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-12-05T23:00:00.000+00:00",
          "number": "36",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-12-08T23:00:00.000+00:00",
          "number": "37",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-01-14T23:00:00.000+00:00",
          "number": "38",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-01-19T23:00:00.000+00:00",
          "number": "39",
          "summary": "Neue Updates von SUSE aufgenommen"
        }
      ],
      "status": "final",
      "version": "39"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Fedora Linux",
            "product": {
              "name": "Fedora Linux",
              "product_id": "74185",
              "product_identification_helper": {
                "cpe": "cpe:/o:fedoraproject:fedora:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Fedora"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Open Source Linux Kernel",
            "product": {
              "name": "Open Source Linux Kernel",
              "product_id": "T033217",
              "product_identification_helper": {
                "cpe": "cpe:/o:linux:linux_kernel:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Ubuntu Linux",
            "product": {
              "name": "Ubuntu Linux",
              "product_id": "T000126",
              "product_identification_helper": {
                "cpe": "cpe:/o:canonical:ubuntu_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Ubuntu"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-26622",
      "notes": [
        {
          "category": "description",
          "text": "Es besteht eine Schwachstelle im Linux-Kernel. Dieser Fehler besteht in der tomoyo Komponente aufgrund eines use-after-free Problems, das zu use-after-free-write und double-free Problemen f\u00fchrt. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um nicht spezifizierte Auswirkungen zu verursachen."
        }
      ],
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T000126",
          "T033217",
          "T004914",
          "74185"
        ]
      },
      "release_date": "2024-03-03T23:00:00.000+00:00",
      "title": "CVE-2024-26622"
    }
  ]
}

wid-sec-w-2024-0536

Vulnerability from csaf_certbund

Published

2024-03-03 23:00

Modified

2025-01-19 23:00

Summary

Linux Kernel: Schwachstelle ermöglicht nicht spezifizierten Angriff

Notes

Produktbeschreibung

Der Kernel stellt den Kern des Linux Betriebssystems dar.

Angriff

Ein lokaler Angreifer kann eine Schwachstelle im Linux Kernel ausnutzen, um einen nicht näher spezifizierten Angriff durchzuführen.

Betroffene Betriebssysteme

- Linux

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Der Kernel stellt den Kern des Linux Betriebssystems dar.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein lokaler Angreifer kann eine Schwachstelle im Linux Kernel ausnutzen, um einen nicht n\u00e4her spezifizierten Angriff durchzuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-0536 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0536.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-0536 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0536"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-03",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26622"
      },
      {
        "category": "external",
        "summary": "Git.Kernel.org vom 2024-03-03",
        "url": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=2f03fc340cac9ea1dc63cbf8c93dd2eb0f227815"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2024-5DB5954A5E vom 2024-03-06",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-5db5954a5e"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2024-F797F1540E vom 2024-03-06",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-f797f1540e"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0855-1 vom 2024-03-12",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-March/018151.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0856-1 vom 2024-03-13",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-March/018155.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0857-1 vom 2024-03-13",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-March/018154.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0858-1 vom 2024-03-13",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-March/018153.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0900-1 vom 2024-03-14",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-March/018167.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0900-2 vom 2024-03-15",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-March/018182.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0910-1 vom 2024-03-15",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-March/018181.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0976-1 vom 2024-03-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-March/018185.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0975-1 vom 2024-03-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-March/018186.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0926-1 vom 2024-03-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-March/018204.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0925-1 vom 2024-03-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-March/018205.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0977-1 vom 2024-03-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-March/018210.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1359-1 vom 2024-04-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018389.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1358-1 vom 2024-04-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018390.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1362-1 vom 2024-04-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018388.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1364-1 vom 2024-04-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018387.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1386-1 vom 2024-04-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018397.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1380-1 vom 2024-04-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018398.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1390-1 vom 2024-04-23",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018402.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1391-1 vom 2024-04-23",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018400.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1388-1 vom 2024-04-23",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018401.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1409-1 vom 2024-04-23",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018413.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1405-1 vom 2024-04-23",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018406.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1406-1 vom 2024-04-23",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018414.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1410-1 vom 2024-04-23",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018412.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1411-1 vom 2024-04-24",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018415.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-5681 vom 2024-05-06",
        "url": "https://lists.debian.org/debian-security-announce/2024/msg00090.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1562-1 vom 2024-05-08",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018484.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1558-1 vom 2024-05-08",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018485.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1580-1 vom 2024-05-09",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018493.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1582-1 vom 2024-05-10",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018497.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1596-1 vom 2024-05-10",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018504.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6776-1 vom 2024-05-16",
        "url": "https://ubuntu.com/security/notices/USN-6776-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6777-1 vom 2024-05-16",
        "url": "https://ubuntu.com/security/notices/USN-6777-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6778-1 vom 2024-05-16",
        "url": "https://ubuntu.com/security/notices/USN-6778-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6775-1 vom 2024-05-16",
        "url": "https://ubuntu.com/security/notices/USN-6775-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6774-1 vom 2024-05-16",
        "url": "https://ubuntu.com/security/notices/USN-6774-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6777-2 vom 2024-05-20",
        "url": "https://ubuntu.com/security/notices/USN-6777-2"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1682-1 vom 2024-05-20",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018546.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1711-1 vom 2024-05-21",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018571.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6775-2 vom 2024-05-22",
        "url": "https://ubuntu.com/security/notices/USN-6775-2"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6777-3 vom 2024-05-22",
        "url": "https://ubuntu.com/security/notices/USN-6777-3"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1749-1 vom 2024-05-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018587.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6777-4 vom 2024-05-23",
        "url": "https://ubuntu.com/security/notices/USN-6777-4"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6795-1 vom 2024-05-28",
        "url": "https://ubuntu.com/security/notices/USN-6795-1"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2024-12385 vom 2024-06-05",
        "url": "https://oss.oracle.com/pipermail/el-errata/2024-June/015807.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6828-1 vom 2024-06-11",
        "url": "https://ubuntu.com/security/notices/USN-6828-1"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:2092-1 vom 2024-06-19",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-June/018765.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:2162-1 vom 2024-06-21",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-June/018785.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:2207-1 vom 2024-06-25",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-June/018824.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-3842 vom 2024-06-25",
        "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:2337-1 vom 2024-07-08",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-July/018881.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:2446-1 vom 2024-07-12",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-July/018947.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:2722-1 vom 2024-08-02",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-August/019090.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:2824-1 vom 2024-08-08",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-August/019152.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:2850-1 vom 2024-08-08",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-August/019144.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3379-1 vom 2024-09-23",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-September/019489.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3399-1 vom 2024-09-23",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-September/019499.html"
      },
      {
        "category": "external",
        "summary": "Dell Security Advisory DSA-2024-422 vom 2024-10-10",
        "url": "https://www.dell.com/support/kbdoc/de-de/000234730/dsa-2024-422-security-update-for-dell-networker-vproxy-multiple-component-vulnerabilities"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3631-1 vom 2024-10-15",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/VBN5S6CN75ZWGV3ZNRLZRMQ5DF3HMBZE/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3694-1 vom 2024-10-16",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/Y2P3R5HQ4Z7AYZLBXUGXBJMITFENT5NV/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3829-1 vom 2024-10-30",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/RMOWLUMWUZKBWNWZRVPCJY43YUOMCMJ7/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3793-1 vom 2024-10-30",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-October/019702.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3852-1 vom 2024-10-31",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/CJCHUFTBOJTQRE24NTRP6WMCK5BGPZ3N/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:4122-1 vom 2024-12-02",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-December/019885.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:4218-1 vom 2024-12-06",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/4UVNDL3CU4NHVPE7QELR2N5HRCDSMYEV/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:4234-1 vom 2024-12-06",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/B6RMLGICBLD3BNXSBS7J23W3GCEJMFJA/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:0107-1 vom 2025-01-14",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020112.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:0158-1 vom 2025-01-17",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020154.html"
      }
    ],
    "source_lang": "en-US",
    "title": "Linux Kernel: Schwachstelle erm\u00f6glicht nicht spezifizierten Angriff",
    "tracking": {
      "current_release_date": "2025-01-19T23:00:00.000+00:00",
      "generator": {
        "date": "2025-01-20T09:28:00.989+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.10"
        }
      },
      "id": "WID-SEC-W-2024-0536",
      "initial_release_date": "2024-03-03T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-03-03T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2024-03-06T23:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Fedora aufgenommen"
        },
        {
          "date": "2024-03-12T23:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-03-14T23:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-03-17T23:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-03-24T23:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-04-21T22:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-04-22T22:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-04-23T22:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-05-06T22:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2024-05-09T22:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-05-12T22:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-05-16T22:00:00.000+00:00",
          "number": "13",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2024-05-20T22:00:00.000+00:00",
          "number": "14",
          "summary": "Neue Updates von Ubuntu und SUSE aufgenommen"
        },
        {
          "date": "2024-05-21T22:00:00.000+00:00",
          "number": "15",
          "summary": "Neue Updates von SUSE und Ubuntu aufgenommen"
        },
        {
          "date": "2024-05-22T22:00:00.000+00:00",
          "number": "16",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-05-23T22:00:00.000+00:00",
          "number": "17",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2024-05-28T22:00:00.000+00:00",
          "number": "18",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2024-06-05T22:00:00.000+00:00",
          "number": "19",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2024-06-11T22:00:00.000+00:00",
          "number": "20",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2024-06-19T22:00:00.000+00:00",
          "number": "21",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-06-23T22:00:00.000+00:00",
          "number": "22",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-06-25T22:00:00.000+00:00",
          "number": "23",
          "summary": "Neue Updates von SUSE und Debian aufgenommen"
        },
        {
          "date": "2024-07-08T22:00:00.000+00:00",
          "number": "24",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-07-14T22:00:00.000+00:00",
          "number": "25",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-08-04T22:00:00.000+00:00",
          "number": "26",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-08-08T22:00:00.000+00:00",
          "number": "27",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-09-22T22:00:00.000+00:00",
          "number": "28",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-09-23T22:00:00.000+00:00",
          "number": "29",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-10-09T22:00:00.000+00:00",
          "number": "30",
          "summary": "Neue Updates von Dell aufgenommen"
        },
        {
          "date": "2024-10-15T22:00:00.000+00:00",
          "number": "31",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-10-16T22:00:00.000+00:00",
          "number": "32",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-10-30T23:00:00.000+00:00",
          "number": "33",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-10-31T23:00:00.000+00:00",
          "number": "34",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-12-02T23:00:00.000+00:00",
          "number": "35",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-12-05T23:00:00.000+00:00",
          "number": "36",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-12-08T23:00:00.000+00:00",
          "number": "37",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-01-14T23:00:00.000+00:00",
          "number": "38",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-01-19T23:00:00.000+00:00",
          "number": "39",
          "summary": "Neue Updates von SUSE aufgenommen"
        }
      ],
      "status": "final",
      "version": "39"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Fedora Linux",
            "product": {
              "name": "Fedora Linux",
              "product_id": "74185",
              "product_identification_helper": {
                "cpe": "cpe:/o:fedoraproject:fedora:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Fedora"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Open Source Linux Kernel",
            "product": {
              "name": "Open Source Linux Kernel",
              "product_id": "T033217",
              "product_identification_helper": {
                "cpe": "cpe:/o:linux:linux_kernel:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Ubuntu Linux",
            "product": {
              "name": "Ubuntu Linux",
              "product_id": "T000126",
              "product_identification_helper": {
                "cpe": "cpe:/o:canonical:ubuntu_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Ubuntu"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-26622",
      "notes": [
        {
          "category": "description",
          "text": "Es besteht eine Schwachstelle im Linux-Kernel. Dieser Fehler besteht in der tomoyo Komponente aufgrund eines use-after-free Problems, das zu use-after-free-write und double-free Problemen f\u00fchrt. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um nicht spezifizierte Auswirkungen zu verursachen."
        }
      ],
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T000126",
          "T033217",
          "T004914",
          "74185"
        ]
      },
      "release_date": "2024-03-03T23:00:00.000+00:00",
      "title": "CVE-2024-26622"
    }
  ]
}

fkie_cve-2024-26622

Vulnerability from fkie_nvd

Published

2024-03-04 07:15

Modified

2024-12-11 17:36

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

References

URL	Tags
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/2caa605079488da9601099fbda460cfc1702839f	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/2f03fc340cac9ea1dc63cbf8c93dd2eb0f227815	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/3bfe04c1273d30b866f4c7c238331ed3b08e5824	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/6edefe1b6c29a9932f558a898968a9fcbeec5711	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/7d930a4da17958f869ef679ee0e4a8729337affc	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/a23ac1788e2c828c097119e9a3178f0b7e503fee	Patch
af854a3a-2127-422b-91ae-364da2661108	https://git.kernel.org/stable/c/2caa605079488da9601099fbda460cfc1702839f	Patch
af854a3a-2127-422b-91ae-364da2661108	https://git.kernel.org/stable/c/2f03fc340cac9ea1dc63cbf8c93dd2eb0f227815	Patch
af854a3a-2127-422b-91ae-364da2661108	https://git.kernel.org/stable/c/3bfe04c1273d30b866f4c7c238331ed3b08e5824	Patch
af854a3a-2127-422b-91ae-364da2661108	https://git.kernel.org/stable/c/6edefe1b6c29a9932f558a898968a9fcbeec5711	Patch
af854a3a-2127-422b-91ae-364da2661108	https://git.kernel.org/stable/c/7d930a4da17958f869ef679ee0e4a8729337affc	Patch
af854a3a-2127-422b-91ae-364da2661108	https://git.kernel.org/stable/c/a23ac1788e2c828c097119e9a3178f0b7e503fee	Patch
af854a3a-2127-422b-91ae-364da2661108	https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html	Patch

Impacted products

Vendor	Product	Version
linux	linux_kernel	*
linux	linux_kernel	*
linux	linux_kernel	*
linux	linux_kernel	*
linux	linux_kernel	*
linux	linux_kernel	6.8
linux	linux_kernel	6.8
linux	linux_kernel	6.8
linux	linux_kernel	6.8
linux	linux_kernel	6.8
linux	linux_kernel	6.8

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "1E2BB29C-D9B8-41F8-AF04-96900D47051A",
              "versionEndExcluding": "5.10.212",
              "versionStartIncluding": "3.1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "EEAFD33E-C22F-4FB1-A417-9C96AB3E0358",
              "versionEndExcluding": "5.15.151",
              "versionStartIncluding": "5.11",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "EC825B0E-DFCA-4034-9B92-F111A4E2A732",
              "versionEndExcluding": "6.1.81",
              "versionStartIncluding": "5.16",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "B19074A2-9FE5-4E7D-9E2D-020F95013ADA",
              "versionEndExcluding": "6.6.21",
              "versionStartIncluding": "6.2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "1C538467-EDA0-4A9A-82EB-2925DE9FF827",
              "versionEndExcluding": "6.7.9",
              "versionStartIncluding": "6.7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:6.8:rc1:*:*:*:*:*:*",
              "matchCriteriaId": "B9F4EA73-0894-400F-A490-3A397AB7A517",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:6.8:rc2:*:*:*:*:*:*",
              "matchCriteriaId": "056BD938-0A27-4569-B391-30578B309EE3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:6.8:rc3:*:*:*:*:*:*",
              "matchCriteriaId": "F02056A5-B362-4370-9FF8-6F0BD384D520",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:6.8:rc4:*:*:*:*:*:*",
              "matchCriteriaId": "62075ACE-B2A0-4B16-829D-B3DA5AE5CC41",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:6.8:rc5:*:*:*:*:*:*",
              "matchCriteriaId": "A780F817-2A77-4130-A9B7-5C25606314E3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:6.8:rc6:*:*:*:*:*:*",
              "matchCriteriaId": "AEB9199B-AB8F-4877-8964-E2BA95B5F15C",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ntomoyo: fix UAF write bug in tomoyo_write_control()\n\nSince tomoyo_write_control() updates head-\u003ewrite_buf when write()\nof long lines is requested, we need to fetch head-\u003ewrite_buf after\nhead-\u003eio_sem is held.  Otherwise, concurrent write() requests can\ncause use-after-free-write and double-free problems."
    },
    {
      "lang": "es",
      "value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: tomoyo: corrige el error de escritura UAF en tomoyo_write_control() Dado que tomoyo_write_control() actualiza head-\u0026gt;write_buf cuando se solicita write() de l\u00edneas largas, necesitamos recuperar head-\u0026gt;write_buf despu\u00e9s head-\u0026gt;io_sem se mantiene. De lo contrario, las solicitudes de escritura () simult\u00e1neas pueden causar problemas de use-after-free-write y de doble liberaci\u00f3n."
    }
  ],
  "id": "CVE-2024-26622",
  "lastModified": "2024-12-11T17:36:15.267",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2024-03-04T07:15:11.063",
  "references": [
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/2caa605079488da9601099fbda460cfc1702839f"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/2f03fc340cac9ea1dc63cbf8c93dd2eb0f227815"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/3bfe04c1273d30b866f4c7c238331ed3b08e5824"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/6edefe1b6c29a9932f558a898968a9fcbeec5711"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/7d930a4da17958f869ef679ee0e4a8729337affc"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/a23ac1788e2c828c097119e9a3178f0b7e503fee"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/2caa605079488da9601099fbda460cfc1702839f"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/2f03fc340cac9ea1dc63cbf8c93dd2eb0f227815"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/3bfe04c1273d30b866f4c7c238331ed3b08e5824"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/6edefe1b6c29a9932f558a898968a9fcbeec5711"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/7d930a4da17958f869ef679ee0e4a8729337affc"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/a23ac1788e2c828c097119e9a3178f0b7e503fee"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
    }
  ],
  "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-416"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

gsd-2024-26622

Vulnerability from gsd

Modified

2024-02-20 06:02

Details

Aliases

CVE-2024-26622

JSON

To clipboard

{
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2024-26622"
      ],
      "details": "In the Linux kernel, the following vulnerability has been resolved:\n\ntomoyo: fix UAF write bug in tomoyo_write_control()\n\nSince tomoyo_write_control() updates head-\u003ewrite_buf when write()\nof long lines is requested, we need to fetch head-\u003ewrite_buf after\nhead-\u003eio_sem is held.  Otherwise, concurrent write() requests can\ncause use-after-free-write and double-free problems.",
      "id": "GSD-2024-26622",
      "modified": "2024-02-20T06:02:29.098543Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@kernel.org",
        "ID": "CVE-2024-26622",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "Linux",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "bd03a3e4c9a9",
                          "version_value": "a23ac1788e2c"
                        },
                        {
                          "version_value": "not down converted",
                          "x_cve_json_5_version_data": {
                            "defaultStatus": "affected",
                            "versions": [
                              {
                                "status": "affected",
                                "version": "3.1"
                              },
                              {
                                "lessThan": "3.1",
                                "status": "unaffected",
                                "version": "0",
                                "versionType": "custom"
                              },
                              {
                                "lessThanOrEqual": "5.10.*",
                                "status": "unaffected",
                                "version": "5.10.212",
                                "versionType": "custom"
                              },
                              {
                                "lessThanOrEqual": "5.15.*",
                                "status": "unaffected",
                                "version": "5.15.151",
                                "versionType": "custom"
                              },
                              {
                                "lessThanOrEqual": "6.1.*",
                                "status": "unaffected",
                                "version": "6.1.81",
                                "versionType": "custom"
                              },
                              {
                                "lessThanOrEqual": "6.6.*",
                                "status": "unaffected",
                                "version": "6.6.21",
                                "versionType": "custom"
                              },
                              {
                                "lessThanOrEqual": "6.7.*",
                                "status": "unaffected",
                                "version": "6.7.9",
                                "versionType": "custom"
                              },
                              {
                                "lessThanOrEqual": "*",
                                "status": "unaffected",
                                "version": "6.8",
                                "versionType": "original_commit_for_fix"
                              }
                            ]
                          }
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Linux"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ntomoyo: fix UAF write bug in tomoyo_write_control()\n\nSince tomoyo_write_control() updates head-\u003ewrite_buf when write()\nof long lines is requested, we need to fetch head-\u003ewrite_buf after\nhead-\u003eio_sem is held.  Otherwise, concurrent write() requests can\ncause use-after-free-write and double-free problems."
          }
        ]
      },
      "generator": {
        "engine": "bippy-8df59b4913de"
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://git.kernel.org/stable/c/a23ac1788e2c828c097119e9a3178f0b7e503fee",
            "refsource": "MISC",
            "url": "https://git.kernel.org/stable/c/a23ac1788e2c828c097119e9a3178f0b7e503fee"
          },
          {
            "name": "https://git.kernel.org/stable/c/7d930a4da17958f869ef679ee0e4a8729337affc",
            "refsource": "MISC",
            "url": "https://git.kernel.org/stable/c/7d930a4da17958f869ef679ee0e4a8729337affc"
          },
          {
            "name": "https://git.kernel.org/stable/c/3bfe04c1273d30b866f4c7c238331ed3b08e5824",
            "refsource": "MISC",
            "url": "https://git.kernel.org/stable/c/3bfe04c1273d30b866f4c7c238331ed3b08e5824"
          },
          {
            "name": "https://git.kernel.org/stable/c/2caa605079488da9601099fbda460cfc1702839f",
            "refsource": "MISC",
            "url": "https://git.kernel.org/stable/c/2caa605079488da9601099fbda460cfc1702839f"
          },
          {
            "name": "https://git.kernel.org/stable/c/6edefe1b6c29a9932f558a898968a9fcbeec5711",
            "refsource": "MISC",
            "url": "https://git.kernel.org/stable/c/6edefe1b6c29a9932f558a898968a9fcbeec5711"
          },
          {
            "name": "https://git.kernel.org/stable/c/2f03fc340cac9ea1dc63cbf8c93dd2eb0f227815",
            "refsource": "MISC",
            "url": "https://git.kernel.org/stable/c/2f03fc340cac9ea1dc63cbf8c93dd2eb0f227815"
          },
          {
            "name": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IVVYSTEVMPYGF6GDSOD44MUXZXAZHOHB/",
            "refsource": "MISC",
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IVVYSTEVMPYGF6GDSOD44MUXZXAZHOHB/"
          },
          {
            "name": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KSXNF4RLEFLH35BFUQGYXRRVHHUIVBAE/",
            "refsource": "MISC",
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KSXNF4RLEFLH35BFUQGYXRRVHHUIVBAE/"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "cve": {
        "descriptions": [
          {
            "lang": "en",
            "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ntomoyo: fix UAF write bug in tomoyo_write_control()\n\nSince tomoyo_write_control() updates head-\u003ewrite_buf when write()\nof long lines is requested, we need to fetch head-\u003ewrite_buf after\nhead-\u003eio_sem is held.  Otherwise, concurrent write() requests can\ncause use-after-free-write and double-free problems."
          },
          {
            "lang": "es",
            "value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: tomoyo: corrige el error de escritura UAF en tomoyo_write_control() Dado que tomoyo_write_control() actualiza head-\u0026gt;write_buf cuando se solicita write() de l\u00edneas largas, necesitamos recuperar head-\u0026gt;write_buf despu\u00e9s head-\u0026gt;io_sem se mantiene. De lo contrario, las solicitudes de escritura () simult\u00e1neas pueden causar problemas de use-after-free-write y de doble liberaci\u00f3n."
          }
        ],
        "id": "CVE-2024-26622",
        "lastModified": "2024-03-13T03:15:06.490",
        "metrics": {},
        "published": "2024-03-04T07:15:11.063",
        "references": [
          {
            "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
            "url": "https://git.kernel.org/stable/c/2caa605079488da9601099fbda460cfc1702839f"
          },
          {
            "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
            "url": "https://git.kernel.org/stable/c/2f03fc340cac9ea1dc63cbf8c93dd2eb0f227815"
          },
          {
            "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
            "url": "https://git.kernel.org/stable/c/3bfe04c1273d30b866f4c7c238331ed3b08e5824"
          },
          {
            "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
            "url": "https://git.kernel.org/stable/c/6edefe1b6c29a9932f558a898968a9fcbeec5711"
          },
          {
            "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
            "url": "https://git.kernel.org/stable/c/7d930a4da17958f869ef679ee0e4a8729337affc"
          },
          {
            "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
            "url": "https://git.kernel.org/stable/c/a23ac1788e2c828c097119e9a3178f0b7e503fee"
          },
          {
            "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IVVYSTEVMPYGF6GDSOD44MUXZXAZHOHB/"
          },
          {
            "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KSXNF4RLEFLH35BFUQGYXRRVHHUIVBAE/"
          }
        ],
        "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "vulnStatus": "Awaiting Analysis"
      }
    }
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2024-26622

Vulnerability from cvelistv5

ghsa-hmvg-cx6j-hfj7

Vulnerability from github

WID-SEC-W-2024-0536

Vulnerability from csaf_certbund

wid-sec-w-2024-0536

Vulnerability from csaf_certbund

fkie_cve-2024-26622

Vulnerability from fkie_nvd

gsd-2024-26622

Vulnerability from gsd

Tags

Sightings

Nomenclature