net:修复列表中的不安全循环(CVE-2024-50024)

admin 2024-10-25 00:48:23 Ali_nvd 来源:ZONE.CI 全球网 0 阅读模式
net:修复列表中的不安全循环(CVE-2024-50024)

CVE编号

CVE-2024-50024

利用情况

暂无

补丁情况

N/A

披露时间

2024-10-22
漏洞描述
In the Linux kernel, the following vulnerability has been resolved: net: Fix an unsafe loop on the list The kernel may crash when deleting a genetlink family if there are still listeners for that family: Oops: Kernel access of bad area, sig: 11 [#1] ... NIP [c000000000c080bc] netlink_update_socket_mc+0x3c/0xc0 LR [c000000000c0f764] __netlink_clear_multicast_users+0x74/0xc0 Call Trace: __netlink_clear_multicast_users+0x74/0xc0 genl_unregister_family+0xd4/0x2d0 Change the unsafe loop on the list to a safe one, because inside the loop there is an element removal from this list.
解决建议
建议您更新当前系统或软件至最新版,完成漏洞的修复。
参考链接
https://git.kernel.org/stable/c/1cdec792b2450105b1314c5123a9a0452cb2c2f0
https://git.kernel.org/stable/c/1dae9f1187189bc09ff6d25ca97ead711f7e26f9
https://git.kernel.org/stable/c/3be342e0332a7c83eb26fbb22bf156fdca467a5d
https://git.kernel.org/stable/c/49f9b726bf2bf3dd2caf0d27cadf4bc1ccf7a7dd
https://git.kernel.org/stable/c/5f03a7f601f33cda1f710611625235dc86fd8a9e
https://git.kernel.org/stable/c/68ad5da6ca630a276f0a5c924179e57724d00013
CVSS3评分 N/A
  • 攻击路径 N/A
  • 攻击复杂度 N/A
  • 权限要求 N/A
  • 影响范围 N/A
  • 用户交互 N/A
  • 可用性 N/A
  • 保密性 N/A
  • 完整性 N/A
N/A
CWE-ID 漏洞类型
- avd.aliyun.com
weinxin
版权声明
本站原创文章转载请注明文章出处及链接,谢谢合作!
评论:0   参与:  0