We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-36929

net: core: reject skb_copy(_expand) for fraglist GSO skbs



Description

In the Linux kernel, the following vulnerability has been resolved: net: core: reject skb_copy(_expand) for fraglist GSO skbs SKB_GSO_FRAGLIST skbs must not be linearized, otherwise they become invalid. Return NULL if such an skb is passed to skb_copy or skb_copy_expand, in order to prevent a crash on a potential later call to skb_gso_segment.

Reserved 2024-05-30 | Published 2024-05-30 | Updated 2024-12-19 | Assigner Linux

Product status

Default status
unaffected

3a1296a38d0cf62bffb9a03c585cbd5dbf15d596 before faa83a7797f06cefed86731ba4baa3b4dfdc06c1
affected

3a1296a38d0cf62bffb9a03c585cbd5dbf15d596 before c7af99cc21923a9650533c9d77265c8dd683a533
affected

3a1296a38d0cf62bffb9a03c585cbd5dbf15d596 before 989bf6fd1e1d058e73a364dce1a0c53d33373f62
affected

3a1296a38d0cf62bffb9a03c585cbd5dbf15d596 before cfe34d86ef9765c388f145039006bb79b6c81ac6
affected

3a1296a38d0cf62bffb9a03c585cbd5dbf15d596 before aea5e2669c2863fdd8679c40ee310b3bcaa85aec
affected

3a1296a38d0cf62bffb9a03c585cbd5dbf15d596 before d091e579b864fa790dd6a0cd537a22c383126681
affected

Default status
affected

5.6
affected

Any version before 5.6
unaffected

5.10.217
unaffected

5.15.159
unaffected

6.1.91
unaffected

6.6.31
unaffected

6.8.10
unaffected

6.9
unaffected

References

git.kernel.org/...c/faa83a7797f06cefed86731ba4baa3b4dfdc06c1

git.kernel.org/...c/c7af99cc21923a9650533c9d77265c8dd683a533

git.kernel.org/...c/989bf6fd1e1d058e73a364dce1a0c53d33373f62

git.kernel.org/...c/cfe34d86ef9765c388f145039006bb79b6c81ac6

git.kernel.org/...c/aea5e2669c2863fdd8679c40ee310b3bcaa85aec

git.kernel.org/...c/d091e579b864fa790dd6a0cd537a22c383126681

cve.org (CVE-2024-36929)

nvd.nist.gov (CVE-2024-36929)

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-36929

Support options

Helpdesk Chat, Email, Knowledgebase
Subscribe to our newsletter to learn more about our work.