2024-08-17 10:03:14 +00:00
{
"id" : "CVE-2024-42285" ,
"sourceIdentifier" : "416baaa9-dc9f-4396-8d5f-8c081fb06d67" ,
"published" : "2024-08-17T09:15:09.300" ,
2024-08-19 20:03:15 +00:00
"lastModified" : "2024-08-19T19:45:41.590" ,
"vulnStatus" : "Analyzed" ,
2024-08-17 10:03:14 +00:00
"cveTags" : [ ] ,
"descriptions" : [
{
"lang" : "en" ,
"value" : "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/iwcm: Fix a use-after-free related to destroying CM IDs\n\niw_conn_req_handler() associates a new struct rdma_id_private (conn_id) with\nan existing struct iw_cm_id (cm_id) as follows:\n\n conn_id->cm_id.iw = cm_id;\n cm_id->context = conn_id;\n cm_id->cm_handler = cma_iw_handler;\n\nrdma_destroy_id() frees both the cm_id and the struct rdma_id_private. Make\nsure that cm_work_handler() does not trigger a use-after-free by only\nfreeing of the struct rdma_id_private after all pending work has finished."
2024-08-19 14:03:15 +00:00
} ,
{
"lang" : "es" ,
"value" : "En el kernel de Linux, se resolvi\u00f3 la siguiente vulnerabilidad: RDMA/iwcm: corrige un use-after-free relacionado con la destrucci\u00f3n de ID de CM iw_conn_req_handler() asocia una nueva estructura rdma_id_private (conn_id) con una estructura iw_cm_id (cm_id) existente de la siguiente manera: conn_id->cm_id.iw = cm_id; cm_id->context = conn_id; cm_id->cm_handler = cma_iw_handler; rdma_destroy_id() libera tanto cm_id como struct rdma_id_private. Aseg\u00farese de que cm_work_handler() no active un use-after-free liberando solo la estructura rdma_id_private despu\u00e9s de que todo el trabajo pendiente haya finalizado."
2024-08-17 10:03:14 +00:00
}
] ,
2024-08-19 20:03:15 +00:00
"metrics" : {
"cvssMetricV31" : [
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"cvssData" : {
"version" : "3.1" ,
"vectorString" : "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" ,
"attackVector" : "LOCAL" ,
"attackComplexity" : "LOW" ,
"privilegesRequired" : "LOW" ,
"userInteraction" : "NONE" ,
"scope" : "UNCHANGED" ,
"confidentialityImpact" : "HIGH" ,
"integrityImpact" : "HIGH" ,
"availabilityImpact" : "HIGH" ,
"baseScore" : 7.8 ,
"baseSeverity" : "HIGH"
} ,
"exploitabilityScore" : 1.8 ,
"impactScore" : 5.9
}
]
} ,
"weaknesses" : [
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"description" : [
{
"lang" : "en" ,
"value" : "CWE-416"
}
]
}
] ,
"configurations" : [
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "4.8" ,
"versionEndExcluding" : "4.19.320" ,
"matchCriteriaId" : "931B85D9-2A7D-4BFF-97EF-D4E9CBD7E552"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "4.20" ,
"versionEndExcluding" : "5.4.282" ,
"matchCriteriaId" : "A8961D98-9ACF-4188-BA88-44038B14BC28"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "5.5" ,
"versionEndExcluding" : "5.10.224" ,
"matchCriteriaId" : "5CCEDF13-293D-4E64-B501-4409D0365AFE"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "5.11" ,
"versionEndExcluding" : "5.15.165" ,
"matchCriteriaId" : "B4E2B568-3171-41DE-B519-F2B1A3600D94"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "5.16" ,
"versionEndExcluding" : "6.1.103" ,
"matchCriteriaId" : "E45EAC72-8329-4F99-8276-86AF9BB3496A"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "6.2" ,
"versionEndExcluding" : "6.6.44" ,
"matchCriteriaId" : "CC912330-6B41-4C6B-99AF-F3857FBACB6A"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "6.7" ,
"versionEndExcluding" : "6.10.3" ,
"matchCriteriaId" : "92D388F2-1EAF-4CFA-AC06-5B26D762EA7D"
}
]
}
]
}
] ,
2024-08-17 10:03:14 +00:00
"references" : [
2024-08-19 06:03:12 +00:00
{
"url" : "https://git.kernel.org/stable/c/557d035fe88d78dd51664f4dc0e1896c04c97cf6" ,
2024-08-19 20:03:15 +00:00
"source" : "416baaa9-dc9f-4396-8d5f-8c081fb06d67" ,
"tags" : [
"Patch"
]
2024-08-19 06:03:12 +00:00
} ,
{
"url" : "https://git.kernel.org/stable/c/7f25f296fc9bd0435be14e89bf657cd615a23574" ,
2024-08-19 20:03:15 +00:00
"source" : "416baaa9-dc9f-4396-8d5f-8c081fb06d67" ,
"tags" : [
"Patch"
]
2024-08-19 06:03:12 +00:00
} ,
{
"url" : "https://git.kernel.org/stable/c/94ee7ff99b87435ec63211f632918dc7f44dac79" ,
2024-08-19 20:03:15 +00:00
"source" : "416baaa9-dc9f-4396-8d5f-8c081fb06d67" ,
"tags" : [
"Patch"
]
2024-08-19 06:03:12 +00:00
} ,
2024-08-17 10:03:14 +00:00
{
"url" : "https://git.kernel.org/stable/c/aee2424246f9f1dadc33faa78990c1e2eb7826e4" ,
2024-08-19 20:03:15 +00:00
"source" : "416baaa9-dc9f-4396-8d5f-8c081fb06d67" ,
"tags" : [
"Patch"
]
2024-08-17 10:03:14 +00:00
} ,
2024-08-19 06:03:12 +00:00
{
"url" : "https://git.kernel.org/stable/c/d91d253c87fd1efece521ff2612078a35af673c6" ,
2024-08-19 20:03:15 +00:00
"source" : "416baaa9-dc9f-4396-8d5f-8c081fb06d67" ,
"tags" : [
"Patch"
]
2024-08-19 06:03:12 +00:00
} ,
2024-08-17 10:03:14 +00:00
{
"url" : "https://git.kernel.org/stable/c/dc8074b8901caabb97c2d353abd6b4e7fa5a59a5" ,
2024-08-19 20:03:15 +00:00
"source" : "416baaa9-dc9f-4396-8d5f-8c081fb06d67" ,
"tags" : [
"Patch"
]
2024-08-17 10:03:14 +00:00
} ,
{
"url" : "https://git.kernel.org/stable/c/ee39384ee787e86e9db4efb843818ef0ea9cb8ae" ,
2024-08-19 20:03:15 +00:00
"source" : "416baaa9-dc9f-4396-8d5f-8c081fb06d67" ,
"tags" : [
"Patch"
]
2024-08-17 10:03:14 +00:00
} ,
{
"url" : "https://git.kernel.org/stable/c/ff5bbbdee08287d75d72e65b72a2b76d9637892a" ,
2024-08-19 20:03:15 +00:00
"source" : "416baaa9-dc9f-4396-8d5f-8c081fb06d67" ,
"tags" : [
"Patch"
]
2024-08-17 10:03:14 +00:00
}
]
}
