CVE-2024-57931

Summary

In the Linux kernel, the following vulnerability has been resolved:

selinux: ignore unknown extended permissions

When evaluating extended permissions, ignore unknown permissions instead of calling BUG(). This commit ensures that future permissions can be added without interfering with older kernels.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxfa1aa143ac4a682c7f5fd52a3cf05f5a6fe44a0a < f45a77dd24ae9ddb474303ec3975c376bd99fc51affected
LinuxLinuxfa1aa143ac4a682c7f5fd52a3cf05f5a6fe44a0a < 712137b177b45f255ce5687e679d950fcb218256affected
LinuxLinuxfa1aa143ac4a682c7f5fd52a3cf05f5a6fe44a0a < f70e4b9ec69d9a74b84c17767a9a4eda8c901021affected
LinuxLinuxfa1aa143ac4a682c7f5fd52a3cf05f5a6fe44a0a < c79324d42fa48372e0acb306a2761cc642bd4db0affected
LinuxLinuxfa1aa143ac4a682c7f5fd52a3cf05f5a6fe44a0a < c1dbd28a079553de0023e1c938c713efeeee400faffected
LinuxLinuxfa1aa143ac4a682c7f5fd52a3cf05f5a6fe44a0a < efefe36c03a73bb81c0720ce397659a5051b73faaffected
LinuxLinuxfa1aa143ac4a682c7f5fd52a3cf05f5a6fe44a0a < 900f83cf376bdaf798b6f5dcb2eae0c822e908b6affected
LinuxLinux4.3affected
LinuxLinux0 < 4.3unaffected
LinuxLinux5.4.289 <= 5.4.*unaffected
LinuxLinux5.10.233 <= 5.10.*unaffected
LinuxLinux5.15.176 <= 5.15.*unaffected
LinuxLinux6.1.124 <= 6.1.*unaffected
LinuxLinux6.6.70 <= 6.6.*unaffected
LinuxLinux6.12.9 <= 6.12.*unaffected
LinuxLinux6.13 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References