目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1336

100%

CVE-2024-50182— Linux kernel 安全漏洞

EPSS 0.22% · P13

可能的 ATT&CK 技术 1AI

T1134 · Access Token Manipulation

影响版本矩阵 12

厂商产品版本范围状态
LinuxLinux1507f51255c9ff07d75909a84e7c0d7f3c4b2f49< d0ae6ffa1aeb297aef89f49cfb894a83c329ebadaffected
1507f51255c9ff07d75909a84e7c0d7f3c4b2f49< 5ea0b7af38754d2b45ead9257bca47e84662e926affected
1507f51255c9ff07d75909a84e7c0d7f3c4b2f49< 7caf966390e6e4ebf42775df54e7ee1f280ce677affected
1507f51255c9ff07d75909a84e7c0d7f3c4b2f49< 757786abe4547eb3d9d0e8350a63bdb0f9824af2affected
1507f51255c9ff07d75909a84e7c0d7f3c4b2f49< 532b53cebe58f34ce1c0f34d866f5c0e335c53c6affected
5.14affected
< 5.14unaffected
5.15.169≤ 5.15.*unaffected
… +4 条更多
获取后续新漏洞提醒登录后订阅

一、 漏洞 CVE-2024-50182 基础信息

漏洞信息

对漏洞内容有疑问?看看神龙的深度分析是否有帮助!
查看神龙十问 ↗

尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。

Vulnerability Title
secretmem: disable memfd_secret() if arch cannot set direct map
来源: 美国国家漏洞数据库 NVD
Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: secretmem: disable memfd_secret() if arch cannot set direct map Return -ENOSYS from memfd_secret() syscall if !can_set_direct_map(). This is the case for example on some arm64 configurations, where marking 4k PTEs in the direct map not present can only be done if the direct map is set up at 4k granularity in the first place (as ARM's break-before-make semantics do not easily allow breaking apart large/gigantic pages). More precisely, on arm64 systems with !can_set_direct_map(), set_direct_map_invalid_noflush() is a no-op, however it returns success (0) instead of an error. This means that memfd_secret will seemingly "work" (e.g. syscall succeeds, you can mmap the fd and fault in pages), but it does not actually achieve its goal of removing its memory from the direct map. Note that with this patch, memfd_secret() will start erroring on systems where can_set_direct_map() returns false (arm64 with CONFIG_RODATA_FULL_DEFAULT_ENABLED=n, CONFIG_DEBUG_PAGEALLOC=n and CONFIG_KFENCE=n), but that still seems better than the current silent failure. Since CONFIG_RODATA_FULL_DEFAULT_ENABLED defaults to 'y', most arm64 systems actually have a working memfd_secret() and aren't be affected. From going through the iterations of the original memfd_secret patch series, it seems that disabling the syscall in these scenarios was the intended behavior [1] (preferred over having set_direct_map_invalid_noflush return an error as that would result in SIGBUSes at page-fault time), however the check for it got dropped between v16 [2] and v17 [3], when secretmem moved away from CMA allocations. [1]: https://lore.kernel.org/lkml/20201124164930.GK8537@kernel.org/ [2]: https://lore.kernel.org/lkml/20210121122723.3446-11-rppt@kernel.org/#t [3]: https://lore.kernel.org/lkml/20201125092208.12544-10-rppt@kernel.org/
来源: 美国国家漏洞数据库 NVD
CVSS Information
N/A
来源: 美国国家漏洞数据库 NVD
Vulnerability Type
N/A
来源: 美国国家漏洞数据库 NVD
Vulnerability Title
Linux kernel 安全漏洞
来源: 中国国家信息安全漏洞库 CNNVD
Vulnerability Description
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞,该漏洞源于无法直接映射时memfd_secret函数调用问题。
来源: 中国国家信息安全漏洞库 CNNVD
CVSS Information
N/A
来源: 中国国家信息安全漏洞库 CNNVD
Vulnerability Type
N/A
来源: 中国国家信息安全漏洞库 CNNVD

受影响产品

厂商产品影响版本CPE订阅
LinuxLinux 1507f51255c9ff07d75909a84e7c0d7f3c4b2f49 ~ d0ae6ffa1aeb297aef89f49cfb894a83c329ebad -
LinuxLinux 5.14 -

二、漏洞 CVE-2024-50182 的公开POC

#POC 描述源链接神龙链接
AI 生成 POC高级

未找到公开 POC。

登录以生成 AI POC

三、漏洞 CVE-2024-50182 的情报信息

登录查看更多情报信息。

CVE-2024-50182 补丁与修复 (4)

同批安全公告 · Linux · 2024-11-08 · 共 38 条

CVE-2024-50203Linux kernel 安全漏洞
CVE-2024-50194Linux kernel 安全漏洞
CVE-2024-50195Linux kernel 安全漏洞
CVE-2024-50196Linux kernel 安全漏洞
CVE-2024-50197Linux kernel 安全漏洞
CVE-2024-50198Linux kernel 安全漏洞
CVE-2024-50199Linux kernel 安全漏洞
CVE-2024-50200Linux kernel 安全漏洞
CVE-2024-50201Linux kernel 安全漏洞
CVE-2024-50202Linux kernel 安全漏洞
CVE-2024-50193Linux kernel 安全漏洞
CVE-2024-50204Linux kernel 安全漏洞
CVE-2024-50205Linux kernel 安全漏洞
CVE-2024-50206Linux kernel 安全漏洞
CVE-2024-50207Linux kernel 安全漏洞
CVE-2024-50209Linux kernel 安全漏洞
CVE-2024-50208Linux kernel 安全漏洞
CVE-2024-50210Linux kernel 安全漏洞
CVE-2024-50211Linux kernel 安全漏洞
CVE-2024-50184Linux kernel 安全漏洞

显示前 20 条,共 38 条。 查看全部 &rarr; →

IV. Related Vulnerabilities

V. Comments for CVE-2024-50182

暂无评论


发表评论