PT-2024-8328 · Linux+9 · Linux Kernel+9
Syzbot
·
Published
2024-04-04
·
Updated
2025-09-29
·
CVE-2024-35896
CVSS v3.1
7.1
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions prior to 6.9.0-rc2-next-20240403-syzkaller
Description
The vulnerability is related to the netfilter component in the Linux kernel, which fails to validate user input for the expected length, leading to a slab-out-of-bounds error. This can be exploited by an attacker to cause a denial of service. The issue is exposed by BPF after a specific commit. The
setsockopt() function's @optlen argument should be taken into account before copying data to prevent this error.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Out of bounds Read
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Almalinux
Astra Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu