CVE-2024-36017

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2024-36017
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-36017.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-36017
Downstream
Related
Published
2024-05-30T12:52:03.554Z
Modified
2026-03-13T07:55:27.467710Z
Summary
rtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation
Details

In the Linux kernel, the following vulnerability has been resolved:

rtnetlink: Correct nested IFLAVFVLAN_LIST attribute validation

Each attribute inside a nested IFLAVFVLANLIST is assumed to be a struct iflavfvlaninfo so the size of such attribute needs to be at least of sizeof(struct iflavfvlaninfo) which is 14 bytes. The current size validation in dosetvfinfo is against NLAHDRLEN (4 bytes) which is less than sizeof(struct iflavfvlaninfo) so this validation is not enough and a too small attribute might be cast to a struct iflavfvlan_info, this might result in an out of bands read access when accessing the saved (casted) entry in ivvl.

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/36xxx/CVE-2024-36017.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
79aab093a0b5370d7fc4e99df75996f4744dc03f
Fixed
8ac69ff2d0d5be9734c4402de932aa3dc8549c1a
Fixed
5e7ef2d88666a0212db8c38e6703864b9ce70169
Fixed
6c8f44b02500c7d14b5e6618fe4ef9a0da47b3de
Fixed
f3c1bf3054f96ddeab0621d920445bada769b40e
Fixed
6e4c7193954f4faab92f6e8d88bc5565317b44e7
Fixed
206003c748b88890a910ef7142d18f77be57550b
Fixed
4a4b9757789a1551d2df130df23bfb3545bfa7e8
Fixed
1aec77b2bb2ed1db0f5efc61c4c1ca3813307489

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-36017.json"