Vulnerability CVE-2024-0646: Information

Description

An out-of-bounds memory write flaw was found in the Linux kernel’s Transport Layer Security functionality in how a user calls a function splice with a ktls socket as the destination. This flaw allows a local user to crash or potentially escalate their privileges on the system.

Severity: HIGH (7.8) Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

URL: https://nvd.nist.gov/vuln/detail/CVE-2024-0646
Published: Jan. 17, 2024
Modified: March 20, 2024
Error type identifier: CWE-787

Fixed packages

Package name
Branch
Fixed in version
Version from repository
Errata ID
Task #
State
kernel-image-mpsisyphus6.7.4-alt16.8.12-alt1ALT-PU-2024-1867-1339882Fixed
kernel-image-mpp116.7.4-alt16.8.8-alt1ALT-PU-2024-1867-1339882Fixed
linux-toolssisyphus_riscv646.7-alt16.9-alt1ALT-PU-2024-2779-1-Fixed
linux-toolssisyphus_loongarch646.7-alt16.9-alt1ALT-PU-2024-1449-1-Fixed

References to Advisories, Solutions, and Tools

Hyperlink
Resource
https://access.redhat.com/security/cve/CVE-2024-0646
  • Third Party Advisory
RHBZ#2253908
  • Issue Tracking
  • Patch
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=c5a595000e267
  • Patch
RHSA-2024:0723
    RHSA-2024:0724
      RHSA-2024:0725
        RHSA-2024:0850
          RHSA-2024:0851
            RHSA-2024:0876
              RHSA-2024:0881
                RHSA-2024:0897
                  RHSA-2024:1248
                    RHSA-2024:1250
                      RHSA-2024:1251
                        RHSA-2024:1253
                          RHSA-2024:1268
                            RHSA-2024:1269
                              RHSA-2024:1278
                                RHSA-2024:1306
                                  RHSA-2024:1367
                                    RHSA-2024:1368
                                      RHSA-2024:1377
                                        RHSA-2024:1382
                                          RHSA-2024:1404

                                              1. Configuration 1

                                                cpe:2.3:o:linux:linux_kernel:6.7:rc1:*:*:*:*:*:*
                                                cpe:2.3:o:linux:linux_kernel:6.7:rc2:*:*:*:*:*:*
                                                cpe:2.3:o:linux:linux_kernel:6.7:rc3:*:*:*:*:*:*
                                                cpe:2.3:o:linux:linux_kernel:6.7:rc4:*:*:*:*:*:*
                                                cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
                                                End excliding
                                                6.7

                                                Configuration 2

                                                cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
                                                cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*
                                            VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
                                            Version: v24.5.3
                                            Back to top