CVE-2024-36903

Published May 30, 2024

Last updated 21 days ago

CVSS medium 5.5

Overview

Description: In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix potential uninit-value access in __ip6_make_skb() As it was done in commit fc1092f51567 ("ipv4: Fix uninit-value access in __ip_make_skb()") for IPv4, check FLOWI_FLAG_KNOWN_NH on fl6->flowi6_flags instead of testing HDRINCL on the socket to avoid a race condition which causes uninit-value access.
Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 5.5
Impact score: 3.6
Exploitability score: 1.8
Vector string: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Severity: MEDIUM

Weaknesses

nvd@nist.gov: CWE-908

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "390EF382-633D-4766-BC19-4EE2D0C6A2F4",
            "versionEndExcluding": "4.15",
            "versionStartIncluding": "4.14.313"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E331B6F3-0759-4D9B-BDED-CD2C890A861D",
            "versionEndExcluding": "4.20",
            "versionStartIncluding": "4.19.281"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0B323643-85E5-4016-AC63-164F92584220",
            "versionEndExcluding": "5.5",
            "versionStartIncluding": "5.4.241"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "141B863E-7219-4752-BF44-0E839C16703A",
            "versionEndExcluding": "5.11",
            "versionStartIncluding": "5.10.178"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2DB17743-B428-49FA-BE83-54EE36E883E6",
            "versionEndExcluding": "5.16",
            "versionStartIncluding": "5.15.107"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B85E3DC9-09DD-4C43-8D7A-D91121AA1E9E",
            "versionEndExcluding": "6.2",
            "versionStartIncluding": "6.1.24"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "48E6EE14-E923-492B-A122-C2F83A3975A8",
            "versionEndExcluding": "6.6.31",
            "versionStartIncluding": "6.2.11"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6A6B920C-8D8F-4130-86B4-AD334F4CF2E3",
            "versionEndExcluding": "6.8.10",
            "versionStartIncluding": "6.7"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:6.9:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "22BEDD49-2C6D-402D-9DBF-6646F6ECD10B"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:6.9:rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DF73CB2A-DFFD-46FB-9BFE-AA394F27EA37"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:6.9:rc3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "52048DDA-FC5A-4363-95A0-A6357B4D7F8C"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:6.9:rc4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A06B2CCF-3F43-4FA9-8773-C83C3F5764B2"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:6.9:rc5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F850DCEC-E08B-4317-A33B-D2DCF39F601B"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:6.9:rc6:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "91326417-E981-482E-A5A3-28BC1327521B"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:6.9:rc7:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DAECDCD8-F556-4606-8D7B-5C6D47A501F2"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

References