Linux · Linux Kernel · CVE-2024-36031
Name of the Vulnerable Software and Affected Versions:
Linux kernel (affected versions not specified)
Description:
The issue is related to the overwrite of key expiration on instantiation in the Linux kernel. The expiry time of a key is unconditionally overwritten during instantiation, defaulting to turn it permanent. This causes a problem for DNS resolution as the expiration set by user-space is overwritten to TIME64 MAX, disabling further DNS updates. The fix involves restoring the condition that key set expiry is only called when the pre-parser sets a specific expiry.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.