Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2024-36881
HistoryMay 30, 2024 - 12:00 a.m.

CVE-2024-36881

2024-05-3000:00:00
ubuntu.com
ubuntu.com
8
linux kernel
userfaultfd
vulnerability
mm/userfaultfd
userfaultfd unregister
pgtable entries
uffd-wp bits
page-table-check
mm-unstable
close()
cve-2024-36881

AI Score

6.4

Confidence

High

EPSS

0

Percentile

15.5%

JSON

In the Linux kernel, the following vulnerability has been resolved:
mm/userfaultfd: reset ptes when close() for wr-protected ones Userfaultfd
unregister includes a step to remove wr-protect bits from all the relevant
pgtable entries, but that only covered an explicit UFFDIO_UNREGISTER ioctl,
not a close() on the userfaultfd itself. Cover that too. This fixes a WARN
trace. The only user visible side effect is the user can observe leftover
wr-protect bits even if the user close()ed on an userfaultfd when releasing
the last reference of it. However hopefully that should be harmless, and
nothing bad should happen even if so. This change is now more important
after the recent page-table-check patch we merged in mm-unstable
(446dd9ad37d0 (“mm/page_table_check: support userfault wr-protect
entries”)), as we’ll do sanity check on uffd-wp bits without vma context.
So it’s better if we can 100% guarantee no uffd-wp bit leftovers, to make
sure each report will be valid.

Related

osv 6
cve 1
redhatcve 1
cvelist 1
vulnrichment 1
debiancve 1
nvd 1
openvas 7
ubuntu 4
nessus 5
mageia 2
osv
osv
CVE-2024-36881
2024-05-30 16:15:00
linux-nvidia-lowlatency, linux-oracle vulnerabilities
2024-08-09 00:06:04
linux, linux-aws, linux-gcp, linux-gke, linux-ibm, linux-nvidia, linux-nvidia-6.8 vulnerabilities
2024-08-08 21:48:24
cve
cve
CVE-2024-36881
2024-05-30 16:15:11
redhatcve
redhatcve
CVE-2024-36881
2024-06-02 16:03:03
cvelist
cvelist
CVE-2024-36881 mm/userfaultfd: reset ptes when close() for wr-protected ones
2024-05-30 15:28:52
vulnrichment
vulnrichment
CVE-2024-36881 mm/userfaultfd: reset ptes when close() for wr-protected ones
2024-05-30 15:28:52
debiancve
debiancve
CVE-2024-36881
2024-05-30 16:15:11
nvd
nvd
CVE-2024-36881
2024-05-30 16:15:11
openvas
openvas
Ubuntu: Security Advisory (USN-6952-1)
2024-08-09 00:00:00
Ubuntu: Security Advisory (USN-6949-1)
2024-08-09 00:00:00
Ubuntu: Security Advisory (USN-6955-1)
2024-08-13 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2024-08-13 00:00:00
Linux kernel vulnerabilities
2024-08-08 00:00:00
Linux kernel (OEM) vulnerabilities
2024-08-12 00:00:00
nessus
nessus
Ubuntu 22.04 LTS / 24.04 LTS : Linux kernel vulnerabilities (USN-6949-1)
2024-08-08 00:00:00
Ubuntu 24.04 LTS : Linux kernel (Azure) vulnerabilities (USN-6952-2)
2024-08-13 00:00:00
Ubuntu 24.04 LTS : Linux kernel vulnerabilities (USN-6952-1)
2024-08-09 00:00:00
mageia
mageia
Updated kernel kmod-xtables-addons kmod-virtualbox dwarves packages fix security vulnerabilities
2024-07-13 10:54:44
Updated kernel-linus packages fix security vulnerabilities
2024-07-14 08:23:38

AI Score

6.4

Confidence

High

EPSS

0

Percentile

15.5%

JSON
Related for UB:CVE-2024-36881
osv6cve1redhatcve1cvelist1vulnrichment1debiancve1nvd1openvas7ubuntu4nessus5mageia2