Lucene search
Redhat.comRH:CVE-2024-23851HistoryJan 25, 2024 - 7:03 p.m.
CVE-2024-23851
2024-01-2519:03:00
redhat.com
access.redhat.com
25
linux kernel
copy_params
drivers
vulnerability
data_size
ctl_ioctl
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
AI Score
6.8
Confidence
Low
EPSS
0
Percentile
5.1%
A vulnerability was found in copy_params in drivers/md/dm-ioctl.c in the Linux kernel, where it can attempt to allocate more than INT_MAX bytes and crash due to a missing param_kernel->data_size check. This issue is related to ctl_ioctl.
Related
nessus
nessus
Photon OS 3.0: Linux PHSA-2024-3.0-0749
2024-08-08 00:00:00
Amazon Linux 2 : kernel (ALAS-2024-2475)
2024-03-05 00:00:00
CBL Mariner 2.0 Security Update: hyperv-daemons / kernel (CVE-2023-52429)
2024-07-03 00:00:00
ubuntucve
ubuntucve
CVE-2024-23851
2024-01-23 00:00:00
CVE-2023-52429
2024-02-12 00:00:00
osv
osv
kernel-devel-6.7.5-1.1 on GA media
2024-06-15 00:00:00
linux-aws-6.5, linux-raspi vulnerabilities
2024-04-16 20:07:50
amazon
amazon
Important: kernel
2024-02-29 10:03:00
debiancve
debiancve
CVE-2023-52429
2024-02-12 03:15:32
CVE-2024-23851
2024-01-23 09:15:36
photon
photon
Moderate Photon OS Security Update - PHSA-2024-3.0-0749
2024-04-17 00:00:00
cbl_mariner
cbl_mariner
CVE-2023-52429 affecting package kernel for versions less than 5.15.153.1-1
2024-04-09 20:48:36
CVE-2023-52429 affecting package kernel for versions less than 6.6.22.1-2
2024-04-02 21:08:16
CVE-2024-23851 affecting package kernel for versions less than 6.6.35.1-4
2024-08-14 20:43:58
vulnrichment
vulnrichment
CVE-2023-52429
2024-02-12 00:00:00
CVE-2024-23851
2024-01-23 00:00:00
cvelist
cvelist
CVE-2023-52429
2024-02-12 00:00:00
CVE-2024-23851
2024-01-23 00:00:00
prion
prion
Design/Logic Flaw
2024-01-23 09:15:00
Design/Logic Flaw
2024-02-12 03:15:00
cve
cve
CVE-2024-23851
2024-01-23 09:15:36
CVE-2023-52429
2024-02-12 03:15:32
nvd
nvd
CVE-2024-23851
2024-01-23 09:15:36
CVE-2023-52429
2024-02-12 03:15:32
cnvd
cnvd
Unspecified vulnerability in Linux kernel (CNVD-2024-06428)
2024-01-29 00:00:00
redhatcve
redhatcve
CVE-2023-52429
2024-02-14 21:32:37
openvas
openvas
Fedora: Security Advisory (FEDORA-2024-88847bc77a)
2024-02-23 00:00:00
Fedora: Security Advisory for kernel (FEDORA-2024-987089eca2)
2024-02-23 00:00:00
Ubuntu: Security Advisory (USN-6724-1)
2024-04-10 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: kernel-6.7.5-200.fc39
2024-02-22 02:31:52
[SECURITY] Fedora 38 Update: kernel-6.7.5-100.fc38
2024-02-22 02:43:54
[SECURITY] Fedora 39 Update: kernel-6.7.6-200.fc39
2024-02-28 01:11:21
ubuntu
ubuntu
Linux kernel vulnerabilities
2024-04-16 00:00:00
Linux kernel vulnerabilities
2024-04-09 00:00:00
Linux kernel vulnerabilities
2024-04-19 00:00:00
redos
redos
ROS-20240814-02
2024-08-14 00:00:00
debian
debian
[SECURITY] [DSA 5658-1] linux security update
2024-04-13 06:38:27
[SECURITY] [DSA 5681-1] linux security update
2024-05-06 18:31:39
slackware
slackware
[slackware-security] Slackware 15.0 kernel
2024-06-05 19:11:11
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
AI Score
6.8
Confidence
Low
EPSS
0
Percentile
5.1%
Related for RH:CVE-2024-23851