[USN-6746-1] Google Guest Agent and Google OS Config Agent vulnerability
Severity
High
Affected Packages
4
CVEs
1
Google Guest Agent and OS Config Agent could be made to crash if it open a specially crafted JSON.
It was discovered that Google Guest Agent and Google OS Config Agent incorrectly
handled certain JSON files. An attacker could possibly use this issue to
cause a denial of service.
Affected
Package | Affected Version |
---|---|
pkg:deb/ubuntu/google-osconfig-agent?distro=mantic | < 20230504.00-0ubuntu2.2 |
pkg:deb/ubuntu/google-osconfig-agent?distro=jammy | < 20230504.00-0ubuntu1~22.04.1 |
pkg:deb/ubuntu/google-guest-agent?distro=mantic | < 20231004.02-0ubuntu1~23.10.3 |
pkg:deb/ubuntu/google-guest-agent?distro=jammy | < 20231004.02-0ubuntu1~22.04.4 |
- ID
- USN-6746-1
- Severity
- high
- Severity from
- CVE-2024-24786
- URL
- https://ubuntu.com/security/notices/USN-6746-1
- Published
-
2024-04-23T11:38:08
(9 months ago) - Modified
-
2024-04-23T11:38:08
(9 months ago) - Other Advisories
-
- ALAS2-2024-2550
- ALAS2-2024-2568
- ALAS2-2024-2618
- ALPINE:CVE-2024-24786
- ALSA-2024:2548
- ALSA-2024:2549
- ALSA-2024:2550
- ALSA-2024:3254
- ALSA-2024:4246
- AZURELINUX:35633-1
- AZURELINUX:35634-1
- AZURELINUX:35635-1
- AZURELINUX:35636-1
- AZURELINUX:35637-1
- AZURELINUX:35638-1
- AZURELINUX:35639-1
- AZURELINUX:35640-1
- AZURELINUX:35641-1
- AZURELINUX:35642-1
- AZURELINUX:35643-1
- AZURELINUX:35644-1
- AZURELINUX:35645-1
- AZURELINUX:35651-1
- AZURELINUX:35657-1
- AZURELINUX:35660-1
- AZURELINUX:35661-1
- AZURELINUX:35662-1
- AZURELINUX:35663-1
- AZURELINUX:35664-1
- AZURELINUX:35665-1
- AZURELINUX:35666-1
- AZURELINUX:35667-1
- AZURELINUX:35668-1
- AZURELINUX:35669-1
- AZURELINUX:35670-1
- AZURELINUX:35671-1
- AZURELINUX:35672-1
- AZURELINUX:35673-1
- AZURELINUX:35674-1
- AZURELINUX:35783-1
- CBLMARINER:35551-1
- CBLMARINER:35554-1
- CBLMARINER:35556-4
- CBLMARINER:35558-1
- CBLMARINER:35560-1
- CBLMARINER:35561-1
- CBLMARINER:35563-1
- CBLMARINER:35576-1
- CBLMARINER:35577-1
- CBLMARINER:35578-1
- CBLMARINER:35579-1
- CBLMARINER:35580-1
- CBLMARINER:35581-4
- CBLMARINER:35582-1
- CBLMARINER:35583-1
- CBLMARINER:35584-1
- CBLMARINER:35585-1
- CBLMARINER:35591-1
- CBLMARINER:35592-1
- CBLMARINER:35593-1
- CBLMARINER:35594-1
- CBLMARINER:35597-1
- CBLMARINER:35598-1
- CBLMARINER:35599-4
- CBLMARINER:35600-1
- CBLMARINER:35601-1
- CBLMARINER:37119-1
- CBLMARINER:39975-1
- CBLMARINER:39981-1
- ELSA-2024-12328
- ELSA-2024-12329
- ELSA-2024-12347
- ELSA-2024-12348
- ELSA-2024-2548
- ELSA-2024-2549
- ELSA-2024-2550
- ELSA-2024-3254
- ELSA-2024-4246
- FEDORA-2024-5bae6c0ea7
- FREEBSD:DBE8C5BD-8D3F-11EF-8D2E-A04A5EDF46D9
- GLSA-202407-12
- GLSA-202407-25
- GO-2024-2611
- MS:CVE-2024-24786
- RHSA-2024:0043
- RHSA-2024:0045
- RHSA-2024:1456
- RHSA-2024:1461
- RHSA-2024:1563
- RHSA-2024:1574
- RHSA-2024:1874
- RHSA-2024:2548
- RHSA-2024:2549
- RHSA-2024:2550
- RHSA-2024:3254
- RHSA-2024:3715
- RHSA-2024:4246
- RLSA-2024:2548
- RLSA-2024:2549
- RLSA-2024:2550
- SUSE-SU-2024:2031-1
- SUSE-SU-2024:2050-1
- SUSE-SU-2024:2050-2
- SUSE-SU-2024:2090-1
- SUSE-SU-2024:3094-1
- SUSE-SU-2024:3097-1
- SUSE-SU-2024:3098-1
- SUSE-SU-2024:3120-1
- SUSE-SU-2024:3151-1
- SUSE-SU-2024:3186-1
- SUSE-SU-2024:3341-1
- SUSE-SU-2024:3342-1
- SUSE-SU-2024:3343-1
- SUSE-SU-2024:3344-1
- USN-6746-2
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:deb/ubuntu/google-osconfig-agent?distro=mantic | ubuntu | google-osconfig-agent | < 20230504.00-0ubuntu2.2 | mantic | ||
Affected | pkg:deb/ubuntu/google-osconfig-agent?distro=jammy | ubuntu | google-osconfig-agent | < 20230504.00-0ubuntu1~22.04.1 | jammy | ||
Affected | pkg:deb/ubuntu/google-guest-agent?distro=mantic | ubuntu | google-guest-agent | < 20231004.02-0ubuntu1~23.10.3 | mantic | ||
Affected | pkg:deb/ubuntu/google-guest-agent?distro=jammy | ubuntu | google-guest-agent | < 20231004.02-0ubuntu1~22.04.4 | jammy |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |