CVE-2024-36481

Published: Jun 21, 2024Modified: Nov 21, 2024

5.5

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

In the Linux kernel, the following vulnerability has been resolved: tracing/probes: fix error check in parse_btf_field() btf_find_struct_member() might return NULL or an error via the ERR_PTR() macro. However, its caller in parse_btf_field() only checks for the NULL condition. Fix this by using IS_ERR() and returning the error up the stack.

Affected (4)

Products: Linux: Linux Kernel

1 product

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	Before 6.6
Linux Linux Kernel	From 6.6.1 to 6.6.33
Linux Linux Kernel	From 6.9 to 6.9.4
Linux Linux Kernel	Version 6.10.0 rc1

Related CWEs

Improper Check for Unusual or Exceptional Conditions

The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.

References (6)

https://git.kernel.org/stable/c/4ed468edfeb54c7202e559eba74c25fac6a0dad0

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Mailing ListPatch

https://git.kernel.org/stable/c/ad4b202da2c498fefb69e5d87f67b946e7fe1e6a

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Mailing ListPatch

https://git.kernel.org/stable/c/e569eb34970281438e2b48a3ef11c87459fcfbcb

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Mailing ListPatch

https://git.kernel.org/stable/c/4ed468edfeb54c7202e559eba74c25fac6a0dad0

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListPatch

https://git.kernel.org/stable/c/ad4b202da2c498fefb69e5d87f67b946e7fe1e6a

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListPatch

https://git.kernel.org/stable/c/e569eb34970281438e2b48a3ef11c87459fcfbcb

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListPatch

Timeline

No history available yet.