PT-2024-26780 · Linux+3 · Linux Kernel+3

Published

2024-05-19

Updated

2025-01-21

CVE-2024-35918

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue concerns the Linux kernel, where the kstack offset variable was only utilizing the low bits for kernel stack offset entropy. To address this, a ror32() function has been added to enhance bit diffusion, thereby improving entropy diffusion in the randomize kstack feature.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2024-35918

INFSA-2024_9315

RHSA-2024:9315

RHSA-2024_9315

USN-6893-1

USN-6893-2

USN-6893-3

USN-6898-1

USN-6898-2

USN-6898-3

USN-6898-4

USN-6917-1

USN-6918-1

USN-6919-1

USN-6927-1

Affected Products

Linuxmint

Linux Kernel

Red Hat

Ubuntu

PT-2024-26780 · Linux+3 · Linux Kernel+3

CVE-2024-35918

Related Identifiers

Affected Products

References · 456