THREATOPS
THREAT OPSThreat News › [NVD] CVE-2024-36927 (MEDIUM 4.7) — In the Linux kernel, the following vulnerability has been resolved: ipv4: Fix uninit-value access in __ip_make_skb() KMSAN reported uninit-value access in __ip_make_skb() [1]. __ip_make_skb() tests HDRINCL to know if the skb has icmphdr. However, HDRINCL can cause a race condi

[NVD] CVE-2024-36927 (MEDIUM 4.7) — In the Linux kernel, the following vulnerability has been resolved: ipv4: Fix uninit-value access in __ip_make_skb() KMSAN reported uninit-value access in __ip_make_skb() [1]. __ip_make_skb() tests HDRINCL to know if the skb has icmphdr. However, HDRINCL can cause a race condi

lownvdPublished 2024-05-30

CVE-2024-36927 CVSS: 4.7 MEDIUM Published: 2024-05-30T16:15:15.957

In the Linux kernel, the following vulnerability has been resolved:

ipv4: Fix uninit-value access in __ip_make_skb()

KMSAN reported uninit-value access in __ip_make_skb() [1]. __ip_make_skb() tests HDRINCL to know if the skb has icmphdr. However, HDRINCL can cause a race condition. If calling setsockopt(2) with IP_HDRINCL chang

Indicators of compromise

Original source: https://nvd.nist.gov/vuln/detail/CVE-2024-36927