CVE-2024-0582
- Source
- https://cve.org/CVERecord?id=CVE-2024-0582
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-0582.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-0582
- Downstream
- Related
- Published
- 2024-01-16T15:15:09.560Z
- Modified
- 2026-02-12T01:01:39.614510Z
- Severity
-
- 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
A memory leak flaw was found in the Linux kernel’s iouring functionality in how a user registers a buffer ring with IORINGREGISTERPBUFRING, mmap() it, and then frees it. This flaw allows a local user to crash or potentially escalate their privileges on the system.
- References
-
- http://www.openwall.com/lists/oss-security/2024/04/24/3
- https://access.redhat.com/security/cve/CVE-2024-0582
- https://bugzilla.redhat.com/show_bug.cgi?id=2254050
- https://bugs.chromium.org/p/project-zero/issues/detail?id=2504
- https://bugzilla.redhat.com/show_bug.cgi?id=2254050
- https://bugzilla.redhat.com/show_bug.cgi?id=2254050
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=c392cbecd8eca4c53f2bf508731257d9d0a21c2d
- https://bugs.chromium.org/p/project-zero/issues/detail?id=2504
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=c392cbecd8eca4c53f2bf508731257d9d0a21c2d
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixedc392cbecd8eca4c53f2bf508731257d9d0a21c2dIntroduced6995e2de6891c724bfeb2db33d7b87775f913ad1Fixedc392cbecd8eca4c53f2bf508731257d9d0a21c2d
Affected versions
v6.*
v6.4
v6.5
v6.5-rc1
v6.5-rc2
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.7-rc1
Database specific
source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-0582.json"
vanir_signatures
[
{
"digest": {
"function_hash": "22933630995411236983797445145212864085",
"length": 1276.0
},
"signature_version": "v1",
"target": {
"file": "io_uring/kbuf.c",
"function": "io_register_pbuf_ring"
},
"signature_type": "Function",
"id": "CVE-2024-0582-0c498e78",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@c392cbecd8eca4c53f2bf508731257d9d0a21c2d",
"deprecated": false
},
{
"digest": {
"function_hash": "289358598634363953908578454394705135868",
"length": 1448.0
},
"signature_version": "v1",
"target": {
"file": "io_uring/io_uring.c",
"function": "io_ring_ctx_free"
},
"signature_type": "Function",
"id": "CVE-2024-0582-0f6bdfe2",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@c392cbecd8eca4c53f2bf508731257d9d0a21c2d",
"deprecated": false
},
{
"digest": {
"function_hash": "7676586082122157091009670424419082094",
"length": 934.0
},
"signature_version": "v1",
"target": {
"file": "io_uring/kbuf.c",
"function": "__io_remove_buffers"
},
"signature_type": "Function",
"id": "CVE-2024-0582-2a7eaf09",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@c392cbecd8eca4c53f2bf508731257d9d0a21c2d",
"deprecated": false
},
{
"digest": {
"function_hash": "265698559962372527834876842950829760213",
"length": 380.0
},
"signature_version": "v1",
"target": {
"file": "io_uring/kbuf.c",
"function": "io_alloc_pbuf_ring"
},
"signature_type": "Function",
"id": "CVE-2024-0582-68c0a7d0",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@c392cbecd8eca4c53f2bf508731257d9d0a21c2d",
"deprecated": false
},
{
"digest": {
"line_hashes": [
"231008355755609772550157604750950091756",
"50051373522420495161369540828104112911",
"210572642020255930797990607104916967362"
],
"threshold": 0.9
},
"signature_version": "v1",
"target": {
"file": "include/linux/io_uring_types.h"
},
"signature_type": "Line",
"id": "CVE-2024-0582-8ce7ae0a",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@c392cbecd8eca4c53f2bf508731257d9d0a21c2d",
"deprecated": false
},
{
"digest": {
"line_hashes": [
"86269229757350491776812495943068243238",
"318949178632360416119699646923150482698",
"181069084051105758756416416432454994773",
"63289948578242660668443560737385934910",
"294878265018376306777324835593307873490",
"194267726813171734116658100284493828463",
"46494136520131728265025878124483751336",
"241022893150645767104339307439500539279"
],
"threshold": 0.9
},
"signature_version": "v1",
"target": {
"file": "io_uring/io_uring.c"
},
"signature_type": "Line",
"id": "CVE-2024-0582-8f517c71",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@c392cbecd8eca4c53f2bf508731257d9d0a21c2d",
"deprecated": false
},
{
"digest": {
"line_hashes": [
"274776262786871879065310686259045595869",
"223140171916222492421835558442364690432",
"335629920473550354970132330418950275128"
],
"threshold": 0.9
},
"signature_version": "v1",
"target": {
"file": "io_uring/kbuf.h"
},
"signature_type": "Line",
"id": "CVE-2024-0582-8fcc2dcf",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@c392cbecd8eca4c53f2bf508731257d9d0a21c2d",
"deprecated": false
},
{
"digest": {
"function_hash": "213846190326769523406104729189363344462",
"length": 2048.0
},
"signature_version": "v1",
"target": {
"file": "io_uring/io_uring.c",
"function": "io_ring_ctx_alloc"
},
"signature_type": "Function",
"id": "CVE-2024-0582-c6d6847f",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@c392cbecd8eca4c53f2bf508731257d9d0a21c2d",
"deprecated": false
},
{
"digest": {
"line_hashes": [
"149589353244364106658845643017669275629",
"260467961775977957643406161110379373738",
"336415972194163093530559986224753047809",
"92495325725702937780020798577762018464",
"207436495394798338532143280162013929184",
"34789413745462760444919098917750368210",
"154541872002906520543906703810102486529",
"97493821383610760661562905675618551421",
"318396604133354292907101107978302782847",
"232748792222472008607472552692926823320",
"131974952760717006414741759942424523573",
"274261950904312875507544446322768880166",
"26047094444084127369883808350646667490",
"164447672916704523153253626882195160672",
"99919871483775648883811025903275710750",
"323385417615100726867454933877523700421",
"248924845774596836741736348133002371584",
"71336292552154522420593992371786049857",
"164244337804846838084140430830234498381",
"51905066690448170835886320078228560394",
"170767536228795232614736839913492461857",
"199643040930722761297242143951083802805",
"149343631150190449160950371465217858581",
"29242815919325191888518067302109853515",
"272746322752827414579896619740484698402"
],
"threshold": 0.9
},
"signature_version": "v1",
"target": {
"file": "io_uring/kbuf.c"
},
"signature_type": "Line",
"id": "CVE-2024-0582-d29a4e26",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@c392cbecd8eca4c53f2bf508731257d9d0a21c2d",
"deprecated": false
}
]