CVE-2024-36017

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-36017

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-36017.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2024-36017

Downstream

BELL-CVE-2024-36017

DEBIAN-CVE-2024-36017

DLA-3840-1

DLA-3843-1

DSA-5703-1

OESA-2024-1705

OESA-2024-1706

OESA-2024-1707

OESA-2024-1863

RHSA-2024:5066

RHSA-2024:5067

RHSA-2024:5101

RHSA-2024:5102

RHSA-2024:5281

RHSA-2024:5363

RHSA-2024:6206

SUSE-SU-2024:2360-1

SUSE-SU-2024:2372-1

SUSE-SU-2024:2381-1

SUSE-SU-2024:2394-1

SUSE-SU-2024:2561-1

SUSE-SU-2024:2571-1

SUSE-SU-2024:2896-1

SUSE-SU-2024:2939-1

SUSE-SU-2024:2973-1

UBUNTU-CVE-2024-36017

USN-6949-1

USN-6949-2

USN-6950-1

USN-6950-2

USN-6950-3

USN-6950-4

USN-6951-1

USN-6951-2

USN-6951-3

USN-6951-4

USN-6952-1

USN-6952-2

USN-6953-1

USN-6955-1

USN-6956-1

USN-6957-1

USN-6979-1

USN-7019-1

Related

Published

2024-05-30T13:15:49Z

Modified

2025-08-09T20:01:27Z

Summary

[none]

Details

In the Linux kernel, the following vulnerability has been resolved:

rtnetlink: Correct nested IFLAVFVLAN_LIST attribute validation

Each attribute inside a nested IFLAVFVLANLIST is assumed to be a struct iflavfvlaninfo so the size of such attribute needs to be at least of sizeof(struct iflavfvlaninfo) which is 14 bytes. The current size validation in dosetvfinfo is against NLAHDRLEN (4 bytes) which is less than sizeof(struct iflavfvlaninfo) so this validation is not enough and a too small attribute might be cast to a struct iflavfvlan_info, this might result in an out of bands read access when accessing the saved (casted) entry in ivvl.

References

Affected packages