CVE-2024-0841

CVSS v3.1 7.8 (High)

EPSS 0.04 % (5^th)

Affected Products 2

Advisories 36

NVD Status Modified

A null pointer dereference flaw was found in the hugetlbfs_fill_super function in the Linux kernel hugetlbfs (HugeTLB pages) functionality. This issue may allow a local user to crash the system or potentially escalate their privileges on the system.

Weaknesses

CWE-476: NULL Pointer Dereference

CVE Status: PUBLISHED
NVD Status: Modified
CNA: Red Hat, Inc.
Published Date: 2024-01-28 12:15:52
(7 months ago)
Updated Date: 2024-09-14 00:15:16
(2 days ago)

Affected Products

Linux

Linux Kernel

Redhat

Enterprise Linux

Configuration #1

	CPE23	From	Up To
Linux Kernel from 5.1 version and prior 5.4.271 version	cpe:2.3:o:linux:linux_kernel	>= 5.1	< 5.4.271
Linux Kernel from 5.5 version and prior 5.10.212 version	cpe:2.3:o:linux:linux_kernel	>= 5.5	< 5.10.212
Linux Kernel from 5.11 version and prior 5.15.151 version	cpe:2.3:o:linux:linux_kernel	>= 5.11	< 5.15.151
Linux Kernel from 5.16 version and prior 6.1.79 version	cpe:2.3:o:linux:linux_kernel	>= 5.16	< 6.1.79
Linux Kernel from 6.2 version and prior 6.6.18 version	cpe:2.3:o:linux:linux_kernel	>= 6.2	< 6.6.18
Linux Kernel from 6.7 version and prior 6.7.6 version	cpe:2.3:o:linux:linux_kernel	>= 6.7	< 6.7.6

Configuration #2

		CPE23	From	Up To
	Redhat Enterprise Linux 8.0	cpe:2.3:o:redhat:enterprise_linux:8.0
	Redhat Enterprise Linux 9.0	cpe:2.3:o:redhat:enterprise_linux:9.0