CVE-2024-47695

Source
https://nvd.nist.gov/vuln/detail/CVE-2024-47695
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-47695.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-47695
Downstream
Related
Published
2024-10-21T12:15:06Z
Modified
2025-08-09T20:01:26Z
Severity
  • 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

In the Linux kernel, the following vulnerability has been resolved:

RDMA/rtrs-clt: Reset cid to con_num - 1 to stay in bounds

In the function initconns(), after the createcon() and createcm() for loop if something fails. In the cleanup for loop after the destroy tag, we access out of bound memory because cid is set to cltpath->s.con_num.

This commits resets the cid to cltpath->s.connum - 1, to stay in bounds in the cleanup loop later.

References

Affected packages