We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-46854

net: dpaa: Pad packets to ETH_ZLEN



Description

In the Linux kernel, the following vulnerability has been resolved: net: dpaa: Pad packets to ETH_ZLEN When sending packets under 60 bytes, up to three bytes of the buffer following the data may be leaked. Avoid this by extending all packets to ETH_ZLEN, ensuring nothing is leaked in the padding. This bug can be reproduced by running $ ping -s 11 destination

Reserved 2024-09-11 | Published 2024-09-27 | Updated 2024-11-08 | Assigner Linux

Product status

Default status
unaffected

9ad1a3749333 before cd5b9d657ecd
affected

9ad1a3749333 before dc43a096cfe6
affected

9ad1a3749333 before 1f31f51bfc82
affected

9ad1a3749333 before 38f5db5587c0
affected

9ad1a3749333 before f43190e33224
affected

9ad1a3749333 before 34fcac26216c
affected

9ad1a3749333 before ce8eabc912fe
affected

9ad1a3749333 before cbd7ec083413
affected

Default status
affected

4.10
affected

Any version before 4.10
unaffected

4.19.323
unaffected

5.4.285
unaffected

5.10.227
unaffected

5.15.168
unaffected

6.1.111
unaffected

6.6.52
unaffected

6.10.11
unaffected

6.11
unaffected

References

git.kernel.org/...c/cd5b9d657ecd44ad5f254c3fea3a6ab1cf0e2ef7

git.kernel.org/...c/dc43a096cfe65b5c32168313846c5cd135d08f1d

git.kernel.org/...c/1f31f51bfc8214a6deaac2920e6342cb9d019133

git.kernel.org/...c/38f5db5587c0ee53546b28c50ba128253181ac83

git.kernel.org/...c/f43190e33224c49e1c7ebbc25923ff400d87ec00

git.kernel.org/...c/34fcac26216ce17886af3eb392355b459367af1a

git.kernel.org/...c/ce8eabc912fe9b9a62be1a5c6af5ad2196e90fc2

git.kernel.org/...c/cbd7ec083413c6a2e0c326d49e24ec7d12c7a9e0

cve.org (CVE-2024-46854)

nvd.nist.gov (CVE-2024-46854)

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-46854

Support options

Helpdesk Chat, Email, Knowledgebase
Telegram Chat
Subscribe to our newsletter to learn more about our work.