Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

CVE-2024-36946— phonet: fix rtm_phonet_notify() skb allocation

AI Predicted 3.3 Difficulty: Hard EPSS 0.03% · P8

Affected Version Matrix 18

VendorProductVersion RangeStatus
LinuxLinuxf062f41d06575744b9eaf725eef8a5d3b5f5b7ca< ec1f71c05caeba0f814df77e0f511d8b4618623aaffected
f062f41d06575744b9eaf725eef8a5d3b5f5b7ca< dc6beac059f0331de97155a89d84058d4a9e49c7affected
f062f41d06575744b9eaf725eef8a5d3b5f5b7ca< f085e02f0a32f6dfcfabc6535c9c4a1707cef86baffected
f062f41d06575744b9eaf725eef8a5d3b5f5b7ca< 4ff334cade9dae50e4be387f71e94fae634aa9b4affected
f062f41d06575744b9eaf725eef8a5d3b5f5b7ca< 728a83160f98ee6b60df0d890141b9b7240182feaffected
f062f41d06575744b9eaf725eef8a5d3b5f5b7ca< ee9e39a6cb3ca2a3d35b4ae25547ee3526a44d00affected
f062f41d06575744b9eaf725eef8a5d3b5f5b7ca< 9a77226440008cf04ba68faf641a2d50f4998137affected
f062f41d06575744b9eaf725eef8a5d3b5f5b7ca< d8cac8568618dcb8a51af3db1103e8d4cc4aeea7affected
… +10 more rows
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2024-36946

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
phonet: fix rtm_phonet_notify() skb allocation
Source: NVD (National Vulnerability Database)
Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: phonet: fix rtm_phonet_notify() skb allocation fill_route() stores three components in the skb: - struct rtmsg - RTA_DST (u8) - RTA_OIF (u32) Therefore, rtm_phonet_notify() should use NLMSG_ALIGN(sizeof(struct rtmsg)) + nla_total_size(1) + nla_total_size(4)
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Linux kernel 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞,该漏洞源于内存分配不当。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
LinuxLinux f062f41d06575744b9eaf725eef8a5d3b5f5b7ca ~ ec1f71c05caeba0f814df77e0f511d8b4618623a -
LinuxLinux 2.6.33 -

II. Public POCs for CVE-2024-36946

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2024-36946

登录查看更多情报信息。

Mailing List Discussions for CVE-2024-36946 (2)

Other References for CVE-2024-36946 (8)

Same Patch Batch · Linux · 2024-05-30 · 93 CVEs total

CVE-2024-36925swiotlb: initialise restricted pool list_head when SWIOTLB_DYNAMIC=y
CVE-2024-36921wifi: iwlwifi: mvm: guard against invalid STA ID on removal
CVE-2024-36918bpf: Check bloom filter map value size
CVE-2024-36917block: fix overflow in blk_ioctl_discard()
CVE-2024-36914drm/amd/display: Skip on writeback when it's not applicable
CVE-2024-36915nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies
CVE-2024-36913Drivers: hv: vmbus: Leak pages if set_memory_encrypted() fails
CVE-2024-36912Drivers: hv: vmbus: Track decrypted status in vmbus_gpadl
CVE-2024-36916blk-iocost: avoid out of bounds shift
CVE-2024-36924scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up()
CVE-2024-36922wifi: iwlwifi: read txq->read_ptr under lock
CVE-2024-36927ipv4: Fix uninit-value access in __ip_make_skb()
CVE-2024-36926powerpc/pseries/iommu: LPAR panics during boot up with a frozen PE
CVE-2024-36928s390/qeth: Fix kernel panic after setting hsuid
CVE-2024-36929net: core: reject skb_copy(_expand) for fraglist GSO skbs
CVE-2024-36930spi: fix null pointer dereference within spi_sync
CVE-2024-36932thermal/debugfs: Prevent use-after-free from occurring after cdev removal
CVE-2024-36931s390/cio: Ensure the copied buf is NUL terminated
CVE-2024-36933nsh: Restore skb->{protocol,data,mac_header} for outer header in nsh_gso_segment().
CVE-2024-36934bna: ensure the copied buf is NUL terminated

Showing top 20 of 93 CVEs. View all on vendor page &rarr; →

IV. Related Vulnerabilities

Same product: Linux
Same vendor: Linux

V. Comments for CVE-2024-36946

No comments yet

Leave a comment