Lucene search
China National Vulnerability DatabaseCNVD-2024-14763HistoryJan 26, 2024 - 12:00 a.m.
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. An out-of-bounds access vulnerability exists in the Linux Kernel. The affected version has an out-of-bounds access vulnerability in the receive_encrypted_standard in the smb client subcomponent fs/smb/client/smb2ops.c due to a lack of memory checksum. An out-of-bounds access vulnerability exists, which can be exploited by an attacker to conduct a DOS attack.
2024-01-2600:00:00
China National Vulnerability Database
www.cnvd.org.cn
19
linux
open source
operating system
united states
memory checksum
smb client
dos attack
code issue
vulnerability
nft_byteorder_eval
netfilter functionality
denial of service
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel has a code issue vulnerability that stems from the fact that in the nft_byteorder_eval() function, the code iteratively loops and writes dst[0], dst[1], dst[2], etc., and writes 8 bytes for each iteration, but dst[] is a u32 array, and therefore only has 4 bytes of space for each element, which means that each iteration overwrites a portion of the previous element. An attacker could use this vulnerability to cause a denial of service or possibly corrupt NetFilter functionality.
| CPE | Name | Operator | Version |
|---|---|---|---|
| linux linux kernel | lt | 6.7 |
Related
cbl_mariner
cbl_mariner
CVE-2024-0607 affecting package kernel for versions less than 5.15.148.1-1
2024-02-25 03:00:06
CVE-2024-0607 affecting package kernel for versions less than 6.6.29.1-4
2024-06-21 09:32:44
prion
prion
Design/Logic Flaw
2024-01-18 16:15:00
redhatcve
redhatcve
CVE-2024-0607
2024-01-16 17:10:00
cve
cve
CVE-2024-0607
2024-01-18 16:15:08
nessus
nessus
CBL Mariner 2.0 Security Update: kernel (CVE-2024-0607)
2024-07-03 00:00:00
Oracle Linux 8 : Unbreakable Enterprise kernel-container (ELSA-2024-12275)
2024-04-09 00:00:00
Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2024-12271)
2024-04-09 00:00:00
nvd
nvd
CVE-2024-0607
2024-01-18 16:15:08
ubuntucve
ubuntucve
CVE-2024-0607
2024-01-18 00:00:00
debiancve
debiancve
CVE-2024-0607
2024-01-18 16:15:08
cvelist
cvelist
CVE-2024-0607 Kernel: nf_tables: pointer math issue in nft_byteorder_eval()
2024-01-18 15:41:14
photon
photon
Important Photon OS Security Update - PHSA-2024-3.0-0725
2024-02-13 00:00:00
Critical Photon OS Security Update - PHSA-2024-4.0-0556
2024-01-25 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2024-04-08 00:00:00
Unbreakable Enterprise kernel-container security update
2024-04-08 00:00:00
Unbreakable Enterprise kernel-container security update
2024-04-08 00:00:00
osv
osv
linux-azure, linux-azure-6.5, linux-hwe-6.5 vulnerabilities
2024-03-08 01:01:36
linux-aws, linux-aws-6.5 vulnerabilities
2024-03-19 14:49:49
openvas
openvas
Ubuntu: Security Advisory (USN-6680-1)
2024-03-07 00:00:00
Ubuntu: Security Advisory (USN-6680-2)
2024-03-11 00:00:00
Ubuntu: Security Advisory (USN-6680-3)
2024-03-21 00:00:00
ubuntu
ubuntu
Linux kernel (AWS) vulnerabilities
2024-03-19 00:00:00
Linux kernel vulnerabilities
2024-03-06 00:00:00
Linux kernel vulnerabilities
2024-03-08 00:00:00
amazon
amazon
Medium: kernel
2024-05-23 22:04:00
debian
debian
[SECURITY] [DSA 5681-1] linux security update
2024-05-06 18:31:39