admin/cve
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2025-11-30 18:56:19 +00:00
Code Issues Packages Projects Releases Wiki Activity
cve/2024/CVE-2024-56661.md
0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09
2025-09-29 21:09:30 +02:00

31 lines
3.5 KiB
Markdown
Raw Permalink Blame History

### [CVE-2024-56661](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56661)
![](https://img.shields.io/static/v1?label=Product&message=Linux&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=4e69457f9dfae67435f3ccf29008768eae860415%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=5.10.231%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=5.15.174%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=5.4.287%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=6.1.120%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=6.12.5%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=6.6.66%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=650ee9a22d7a2de8999fac2d45983597a0c22359%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=6a2fa13312e51a621f652d522d7e2df7066330b6%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=d00d4470bf8c4282617a3a10e76b20a9c7e4cffa%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=d2a4894f238551eae178904e7f45af87577074fd%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=d62d5180c036eeac09f80660edc7a602b369125f%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=e48b211c4c59062cb6dd6c2c37c51a7cc235a464%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=blue)
### Description
In the Linux kernel, the following vulnerability has been resolved:tipc: fix NULL deref in cleanup_bearer()syzbot found [1] that after blamed commit, ub->ubsock->skwas NULL when attempting the atomic_dec() :atomic_dec(&tipc_net(sock_net(ub->ubsock->sk))->wq_count);Fix this by caching the tipc_net pointer.[1]Oops: general protection fault, probably for non-canonical address 0xdffffc0000000006: 0000 [#1] PREEMPT SMP KASAN PTIKASAN: null-ptr-deref in range [0x0000000000000030-0x0000000000000037]CPU: 0 UID: 0 PID: 5896 Comm: kworker/0:3 Not tainted 6.13.0-rc1-next-20241203-syzkaller #0Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024Workqueue: events cleanup_bearer RIP: 0010:read_pnet include/net/net_namespace.h:387 [inline] RIP: 0010:sock_net include/net/sock.h:655 [inline] RIP: 0010:cleanup_bearer+0x1f7/0x280 net/tipc/udp_media.c:820Code: 18 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 3c f7 99 f6 48 8b 1b 48 83 c3 30 e8 f0 e4 60 00 48 89 d8 48 c1 e8 03 <42> 80 3c 28 00 74 08 48 89 df e8 1a f7 99 f6 49 83 c7 e8 48 8b 1bRSP: 0018:ffffc9000410fb70 EFLAGS: 00010206RAX: 0000000000000006 RBX: 0000000000000030 RCX: ffff88802fe45a00RDX: 0000000000000001 RSI: 0000000000000008 RDI: ffffc9000410f900RBP: ffff88807e1f0908 R08: ffffc9000410f907 R09: 1ffff92000821f20R10: dffffc0000000000 R11: fffff52000821f21 R12: ffff888031d19980R13: dffffc0000000000 R14: dffffc0000000000 R15: ffff88807e1f0918FS: 0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033CR2: 0000556ca050b000 CR3: 0000000031c0c000 CR4: 00000000003526f0DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
### POC
#### Reference
No PoCs from references.
#### Github
- https://github.com/cku-heise/euvd-api-doc
- https://github.com/w4zu/Debian_security
Reference in New Issue View Git Blame Copy Permalink