CVE-2024-56716

Sažetak

In the Linux kernel, the following vulnerability has been resolved: netdevsim: prevent bad user input in nsim_dev_health_break_write() If either a zero count or a large one is provided, kernel can crash.

Reference

https://git.kernel.org/stable/c/470c5ecbac2f19b1cdee2a6ce8d5650c3295c94b
https://git.kernel.org/stable/c/81bdfcd6e6a998e219c9dd49ec7291c2e0594bbc
https://git.kernel.org/stable/c/8e9ef6bdf71bf25f4735e0230ce1919de8985835
https://git.kernel.org/stable/c/b3a6daaf7cfb2de37b89fd7a5a2ad4ea9aa3e181
https://git.kernel.org/stable/c/d10321be26ff9e9e912697e9e8448099654ff561
https://git.kernel.org/stable/c/ee76746387f6233bdfa93d7406990f923641568f

CVSS

Base:	5.5
Impact:	3.6
Exploitability:	1.8

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	LOW

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	HIGH

CVSS vektor

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Zadnje važnije ažuriranje

10-01-2025 - 15:52

Objavljeno

29-12-2024 - 09:15