CVE-2024-26735
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
ipv6: sr: fix possible use-after-free and null-ptr-deref
The pernet operations structure for the subsystem must be registered before registering the generic netlink family.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 915d7e5e5930b4f01d0971d93b9b25ed17d221aa < 953f42934533c151f440cd32390044d2396b87aa | affected |
| Linux | Linux | 915d7e5e5930b4f01d0971d93b9b25ed17d221aa < 82831e3ff76ef09fb184eb93b79a3eb3fb284f1d | affected |
| Linux | Linux | 915d7e5e5930b4f01d0971d93b9b25ed17d221aa < 65c38f23d10ff79feea1e5d50b76dc7af383c1e6 | affected |
| Linux | Linux | 915d7e5e5930b4f01d0971d93b9b25ed17d221aa < 91b020aaa1e59bfb669d34c968e3db3d5416bcee | affected |
| Linux | Linux | 915d7e5e5930b4f01d0971d93b9b25ed17d221aa < 8391b9b651cfdf80ab0f1dc4a489f9d67386e197 | affected |
| Linux | Linux | 915d7e5e5930b4f01d0971d93b9b25ed17d221aa < 9e02973dbc6a91e40aa4f5d87b8c47446fbfce44 | affected |
| Linux | Linux | 915d7e5e5930b4f01d0971d93b9b25ed17d221aa < 02b08db594e8218cfbc0e4680d4331b457968a9b | affected |
| Linux | Linux | 915d7e5e5930b4f01d0971d93b9b25ed17d221aa < 5559cea2d5aa3018a5f00dd2aca3427ba09b386b | affected |
| Linux | Linux | 4.10 | affected |
| Linux | Linux | 0 < 4.10 | unaffected |
| Linux | Linux | 4.19.308 <= 4.19.* | unaffected |
| Linux | Linux | 5.4.270 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.211 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.150 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.80 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.19 <= 6.6.* | unaffected |
| Linux | Linux | 6.7.7 <= 6.7.* | unaffected |
| Linux | Linux | 6.8 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
CVE Program Container
Additional References
- https://git.kernel.org/stable/c/953f42934533c151f440cd32390044d2396b87aa
- https://git.kernel.org/stable/c/82831e3ff76ef09fb184eb93b79a3eb3fb284f1d
- https://git.kernel.org/stable/c/65c38f23d10ff79feea1e5d50b76dc7af383c1e6
- https://git.kernel.org/stable/c/91b020aaa1e59bfb669d34c968e3db3d5416bcee
- https://git.kernel.org/stable/c/8391b9b651cfdf80ab0f1dc4a489f9d67386e197
- https://git.kernel.org/stable/c/9e02973dbc6a91e40aa4f5d87b8c47446fbfce44
- https://git.kernel.org/stable/c/02b08db594e8218cfbc0e4680d4331b457968a9b
- https://git.kernel.org/stable/c/5559cea2d5aa3018a5f00dd2aca3427ba09b386b
- https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
- https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html
- https://security.netapp.com/advisory/ntap-20241101-0012/
References
- https://git.kernel.org/stable/c/953f42934533c151f440cd32390044d2396b87aa
- https://git.kernel.org/stable/c/82831e3ff76ef09fb184eb93b79a3eb3fb284f1d
- https://git.kernel.org/stable/c/65c38f23d10ff79feea1e5d50b76dc7af383c1e6
- https://git.kernel.org/stable/c/91b020aaa1e59bfb669d34c968e3db3d5416bcee
- https://git.kernel.org/stable/c/8391b9b651cfdf80ab0f1dc4a489f9d67386e197
- https://git.kernel.org/stable/c/9e02973dbc6a91e40aa4f5d87b8c47446fbfce44
- https://git.kernel.org/stable/c/02b08db594e8218cfbc0e4680d4331b457968a9b
- https://git.kernel.org/stable/c/5559cea2d5aa3018a5f00dd2aca3427ba09b386b
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.