CVE-2024-46865

Summary

In the Linux kernel, the following vulnerability has been resolved:

fou: fix initialization of grc

The grc must be initialize first. There can be a condition where if fou is NULL, goto out will be executed and grc would be used uninitialized.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux231c235d2f7a66f018f172e26ffd47c363f244ef < 392f6a97fcbecc64f0c00058b2db5bb0e4b8cc3eaffected
LinuxLinux4494bccb52ffda22ce5a1163a776d970e6229e08 < 16ff0895283058b0f96d4fe277aa25ee096f0ea8affected
LinuxLinuxd7567f098f54cb53ee3cee1c82e3d0ed9698b6b3 < 5d537b8d900514509622ce92330b70d2e581d409affected
LinuxLinux1df42be305fe478ded1ee0c1d775f4ece713483b < 7ae890ee19479eeeb87724cca8430b5cb3660c74affected
LinuxLinuxc46cd6aaca81040deaea3500ba75126963294bd9 < aca06c617c83295f0caa486ad608fbef7bdc11e8affected
LinuxLinux7e4196935069947d8b70b09c1660b67b067e75cb < 4c8002277167125078e6b9b90137bdf443ebaa08affected
LinuxLinux5.10.226 < 5.10.227affected
LinuxLinux5.15.167 < 5.15.168affected
LinuxLinux6.1.110 < 6.1.111affected
LinuxLinux6.6.51 < 6.6.52affected
LinuxLinux6.10.10 < 6.10.11affected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

Additional References

References