CVE-2024-2314

CVSS v3.1

2.8

Low

Vector

AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L

Name of the Vulnerable Software and Affected Versions bcc (affected versions not specified)

Description The issue arises when kernel headers need to be extracted, and bcc attempts to load them from a temporary directory. An unprivileged attacker could exploit this to force bcc to load compromised Linux headers. However, Linux distributions that provide kernel headers by default are not affected by default.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

ALSA-2024:8831

ALSA-2024:9187

AZL-38914

CESA-2024_8831

CVE-2024-2314

INFSA-2024_8831

INFSA-2024_9187

OESA-2024-2502

RHSA-2024:8831

RHSA-2024:9187

RHSA-2024_8831

RHSA-2024_9187

RLSA-2024:8831

Affected Products

Almalinux

Centos

Debian

Red Hat

Rocky Linux

Bcc

CVE-2024-2314

Related Identifiers

Affected Products

References · 27