目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1336

100%

CVE-2024-53140— Linux kernel 安全漏洞

AI 预测 5.5 利用难度: 中等 EPSS 0.24% · P14

影响版本矩阵 22

厂商产品版本范围状态
LinuxLinuxed5d7788a934a4b6d6d025e948ed4da496b4f12e< 114a61d8d94ae3a43b82446cf737fd757021b834affected
ed5d7788a934a4b6d6d025e948ed4da496b4f12e< 598c956b62699c3753929602560d8df322e60559affected
ed5d7788a934a4b6d6d025e948ed4da496b4f12e< 6e3f2c512d2b7dbd247485b1dd9e43e4210a18f4affected
ed5d7788a934a4b6d6d025e948ed4da496b4f12e< d2fab3d66cc16cfb9e3ea1772abe6b79b71fa603affected
ed5d7788a934a4b6d6d025e948ed4da496b4f12e< 4e87a52133284afbd40fb522dbf96e258af52a98affected
ed5d7788a934a4b6d6d025e948ed4da496b4f12e< bbc769d2fa1b8b368c5fbe013b5b096afa3c05caaffected
ed5d7788a934a4b6d6d025e948ed4da496b4f12e< 176c41b3ca9281a9736b67c6121b03dbf0c8c08faffected
ed5d7788a934a4b6d6d025e948ed4da496b4f12e< 1904fb9ebf911441f90a68e96b22aa73e4410505affected
… +14 条更多
获取后续新漏洞提醒登录后订阅

一、 漏洞 CVE-2024-53140 基础信息

漏洞信息

对漏洞内容有疑问?看看神龙的深度分析是否有帮助!
查看神龙十问 ↗

尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。

Vulnerability Title
netlink: terminate outstanding dump on socket close
来源: 美国国家漏洞数据库 NVD
Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: netlink: terminate outstanding dump on socket close Netlink supports iterative dumping of data. It provides the families the following ops: - start - (optional) kicks off the dumping process - dump - actual dump helper, keeps getting called until it returns 0 - done - (optional) pairs with .start, can be used for cleanup The whole process is asynchronous and the repeated calls to .dump don't actually happen in a tight loop, but rather are triggered in response to recvmsg() on the socket. This gives the user full control over the dump, but also means that the user can close the socket without getting to the end of the dump. To make sure .start is always paired with .done we check if there is an ongoing dump before freeing the socket, and if so call .done. The complication is that sockets can get freed from BH and .done is allowed to sleep. So we use a workqueue to defer the call, when needed. Unfortunately this does not work correctly. What we defer is not the cleanup but rather releasing a reference on the socket. We have no guarantee that we own the last reference, if someone else holds the socket they may release it in BH and we're back to square one. The whole dance, however, appears to be unnecessary. Only the user can interact with dumps, so we can clean up when socket is closed. And close always happens in process context. Some async code may still access the socket after close, queue notification skbs to it etc. but no dumps can start, end or otherwise make progress. Delete the workqueue and flush the dump state directly from the release handler. Note that further cleanup is possible in -next, for instance we now always call .done before releasing the main module reference, so dump doesn't have to take a reference of its own.
来源: 美国国家漏洞数据库 NVD
CVSS Information
N/A
来源: 美国国家漏洞数据库 NVD
Vulnerability Type
N/A
来源: 美国国家漏洞数据库 NVD
Vulnerability Title
Linux kernel 安全漏洞
来源: 中国国家信息安全漏洞库 CNNVD
Vulnerability Description
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞,该漏洞源于netlink套接字在关闭时未能正确终止正在进行的数据转储操作,可能导致资源未正确释放。
来源: 中国国家信息安全漏洞库 CNNVD
CVSS Information
N/A
来源: 中国国家信息安全漏洞库 CNNVD
Vulnerability Type
N/A
来源: 中国国家信息安全漏洞库 CNNVD

受影响产品

厂商产品影响版本CPE订阅
LinuxLinux ed5d7788a934a4b6d6d025e948ed4da496b4f12e ~ 114a61d8d94ae3a43b82446cf737fd757021b834 -
LinuxLinux 4.9 -

二、漏洞 CVE-2024-53140 的公开POC

#POC 描述源链接神龙链接
AI 生成 POC高级

未找到公开 POC。

登录以生成 AI POC

三、漏洞 CVE-2024-53140 的情报信息

登录查看更多情报信息。

CVE-2024-53140 补丁与修复 (8)

同批安全公告 · Linux · 2024-12-04 · 共 16 条

CVE-2024-53125Linux kernel 安全漏洞
CVE-2024-53126Linux kernel 安全漏洞
CVE-2024-53127Linux kernel 安全漏洞
CVE-2024-53128Linux kernel 安全漏洞
CVE-2024-53129Linux kernel 安全漏洞
CVE-2024-53130Linux kernel 安全漏洞
CVE-2024-53131Linux kernel 安全漏洞
CVE-2024-53132Linux kernel 安全漏洞
CVE-2024-53133Linux kernel 安全漏洞
CVE-2024-53134Linux kernel 安全漏洞
CVE-2024-53135Linux kernel 安全漏洞
CVE-2024-53136Linux kernel 安全漏洞
CVE-2024-53138Linux kernel 安全漏洞
CVE-2024-53137Linux kernel 安全漏洞
CVE-2024-53139Linux kernel 安全漏洞

IV. Related Vulnerabilities

V. Comments for CVE-2024-53140

暂无评论


发表评论