1. Home
  2. Vulnerabilities
  3. CVE-2024-36946

CVE-2024-36946

EPSS 0.04 % (14th)
0.04% Progress
Advisories 26
NVD Status Awaiting Analysis
Info EPSS References Security Advisories Packages & Software Tools, Exploits & PoC Graph Web & Social Timeline

In the Linux kernel, the following vulnerability has been resolved:

phonet: fix rtm_phonet_notify() skb allocation

fill_route() stores three components in the skb:

  • struct rtmsg
  • RTA_DST (u8)
  • RTA_OIF (u32)

Therefore, rtm_phonet_notify() should use

NLMSG_ALIGN(sizeof(struct rtmsg)) +
nla_total_size(1) +
nla_total_size(4)

CVE Status
PUBLISHED
NVD Status
Awaiting Analysis
CNA
kernel.org
Published Date
2024-05-30 16:15:17
(3 months ago)
Updated Date
2024-06-27 14:15:15
(2 months ago)