PT-2024-5404 · Linux+6 · Linux Kernel+6
Noam Rathaus
·
Published
2024-06-05
·
Updated
2025-10-01
·
CVE-2024-36974
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel (affected versions not specified)
Description
The issue is related to the
taprio parse mqprio opt() function in the Linux kernel's net/sched module. If a TCA TAPRIO ATTR PRIOMAP attribute is provided, the function must validate it to prevent userspace from injecting arbitrary data into the kernel when taprio change() is called a second time. The first call with valid attributes sets dev->num tc to a non-zero value, and the second call with arbitrary mqprio attributes returns early from taprio parse mqprio opt(), potentially causing problems. The vulnerability is associated with insufficient validation of user-provided data.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Astra Linux
Linuxmint
Linux Kernel
Red Hat
Red Os
Suse
Ubuntu