CVE-2024-41044

Summary

In the Linux kernel, the following vulnerability has been resolved:

ppp: reject claimed-as-LCP but actually malformed packets

Since 'ppp_async_encode()' assumes valid LCP packets (with code from 1 to 7 inclusive), add 'ppp_check_packet()' to ensure that LCP packet has an actual body beyond PPP_LCP header bytes, and reject claimed-as-LCP but actually malformed data otherwise.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 97d1efd8be26615ff680cdde86937d5943138f37affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 6e8f1c21174f9482033bbb59f13ce1a8cbe843c3affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 3ba12c2afd933fc1bf800f6d3f6c7ec8f602ce56affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < ebc5c630457783d17d0c438b0ad70b232a64a82faffected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 3134bdf7356ed952dcecb480861d2afcc1e40492affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 099502ca410922b56353ccef2749bc0de669da78affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < d683e7f3fc48f59576af34631b4fb07fd931343eaffected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < f2aeb7306a898e1cbd03963d376f4b6656ca2b55affected
LinuxLinux2.6.12affected
LinuxLinux0 < 2.6.12unaffected
LinuxLinux4.19.318 <= 4.19.*unaffected
LinuxLinux5.4.280 <= 5.4.*unaffected
LinuxLinux5.10.222 <= 5.10.*unaffected
LinuxLinux5.15.163 <= 5.15.*unaffected
LinuxLinux6.1.100 <= 6.1.*unaffected
LinuxLinux6.6.41 <= 6.6.*unaffected
LinuxLinux6.9.10 <= 6.9.*unaffected
LinuxLinux6.10 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References