PT-2024-7733 · Linux+5 · Linux Kernel+5

Syzbot

·

Published

2024-02-19

·

Updated

2025-02-27

·

CVE-2024-26805

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The vulnerability is related to a kernel-infoleak-after-free issue in the skb datagram iter function. The problem occurs when netlink to full skb creates a new skb and puts the skb->data onto the new skb. The data size is specified as len and passed to skb put data, but this len is based on skb->end, which contains data and tailroom. Since the tailroom is not initialized when the new skb is created, KMSAN detects an uninitialized memory area when copying the data. This issue can be exploited to cause a denial of service. The estimated number of potentially affected devices is not available.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Use of Uninitialized Resource

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-908

Related Identifiers

BDU:2024-09201
CVE-2024-26805
DLA-3840-1
DLA-3842-1
DSA-5658-1
DSA-5681-1
OESA-2024-1617
OESA-2024-1618
OESA-2024-1622
OESA-2024-1647
OESA-2024-1648
OESA-2024-1649
OPENSUSE-SU-2024_1490-1
OPENSUSE-SU-2024_1659-1
OPENSUSE-SU-2024_1663-1
SUSE-SU-2024:1490-1
SUSE-SU-2024:1643-1
SUSE-SU-2024:1646-1
SUSE-SU-2024:1659-1
SUSE-SU-2024:1663-1
SUSE-SU-2024:1870-1
SUSE-SU-2024:2135-1
SUSE-SU-2024:2203-1
SUSE-SU-2024:2973-1
SUSE-SU-2025:20008-1
USN-6774-1
USN-6777-1
USN-6777-2
USN-6777-3
USN-6777-4
USN-6778-1
USN-6820-1
USN-6820-2
USN-6821-1
USN-6821-2
USN-6821-3
USN-6821-4
USN-6828-1
USN-6831-1
USN-6867-1
USN-6871-1
USN-6892-1
USN-6919-1

Affected Products

Astra Linux
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu