nvd-json-data-feeds/CVE-2024/CVE-2024-369xx/CVE-2024-36974.json

{
  "id": "CVE-2024-36974",
  "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
  "published": "2024-06-18T20:15:13.257",
  "lastModified": "2024-11-21T09:22:56.983",
  "vulnStatus": "Awaiting Analysis",
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP\n\nIf one TCA_TAPRIO_ATTR_PRIOMAP attribute has been provided,\ntaprio_parse_mqprio_opt() must validate it, or userspace\ncan inject arbitrary data to the kernel, the second time\ntaprio_change() is called.\n\nFirst call (with valid attributes) sets dev->num_tc\nto a non zero value.\n\nSecond call (with arbitrary mqprio attributes)\nreturns early from taprio_parse_mqprio_opt()\nand bad things can happen."
    },
    {
      "lang": "es",
      "value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: net/sched: taprio: validar siempre TCA_TAPRIO_ATTR_PRIOMAP Si se ha proporcionado un atributo TCA_TAPRIO_ATTR_PRIOMAP, taprio_parse_mqprio_opt() debe validarlo, o el espacio de usuario puede inyectar datos arbitrarios al kernel, la segunda vez taprio_change () se llama. La primera llamada (con atributos v\u00e1lidos) establece dev-&gt;num_tc en un valor distinto de cero. La segunda llamada (con atributos mqprio arbitrarios) regresa temprano desde taprio_parse_mqprio_opt() y pueden suceder cosas malas."
    }
  ],
  "metrics": {},
  "references": [
    {
      "url": "https://git.kernel.org/stable/c/0bf6cc96612bd396048f57d63f1ad454a846e39c",
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
    },
    {
      "url": "https://git.kernel.org/stable/c/6db4af09987cc5d5f0136bd46148b0e0460dae5b",
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
    },
    {
      "url": "https://git.kernel.org/stable/c/724050ae4b76e4fae05a923cb54101d792cf4404",
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
    },
    {
      "url": "https://git.kernel.org/stable/c/c37a27a35eadb59286c9092c49c241270c802ae2",
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
    },
    {
      "url": "https://git.kernel.org/stable/c/c6041e7124464ce7e896ee3f912897ce88a0c4ec",
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
    },
    {
      "url": "https://git.kernel.org/stable/c/d3dde4c217f0c31ab0621912e682b57e677dd923",
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
    },
    {
      "url": "https://git.kernel.org/stable/c/f921a58ae20852d188f70842431ce6519c4fdc36",
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
    },
    {
      "url": "https://git.kernel.org/stable/c/0bf6cc96612bd396048f57d63f1ad454a846e39c",
      "source": "af854a3a-2127-422b-91ae-364da2661108"
    },
    {
      "url": "https://git.kernel.org/stable/c/6db4af09987cc5d5f0136bd46148b0e0460dae5b",
      "source": "af854a3a-2127-422b-91ae-364da2661108"
    },
    {
      "url": "https://git.kernel.org/stable/c/724050ae4b76e4fae05a923cb54101d792cf4404",
      "source": "af854a3a-2127-422b-91ae-364da2661108"
    },
    {
      "url": "https://git.kernel.org/stable/c/c37a27a35eadb59286c9092c49c241270c802ae2",
      "source": "af854a3a-2127-422b-91ae-364da2661108"
    },
    {
      "url": "https://git.kernel.org/stable/c/c6041e7124464ce7e896ee3f912897ce88a0c4ec",
      "source": "af854a3a-2127-422b-91ae-364da2661108"
    },
    {
      "url": "https://git.kernel.org/stable/c/d3dde4c217f0c31ab0621912e682b57e677dd923",
      "source": "af854a3a-2127-422b-91ae-364da2661108"
    },
    {
      "url": "https://git.kernel.org/stable/c/f921a58ae20852d188f70842431ce6519c4fdc36",
      "source": "af854a3a-2127-422b-91ae-364da2661108"
    }
  ]
}
Auto-Update: 2024-06-18T22:00:18.589765+00:00 2024-06-18 22:03:12 +00:00			`{`
			`"id": "CVE-2024-36974",`
			`"sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",`
			`"published": "2024-06-18T20:15:13.257",`
Auto-Update: 2024-12-08T03:00:18.988682+00:00 2024-12-08 03:06:42 +00:00			`"lastModified": "2024-11-21T09:22:56.983",`
Auto-Update: 2024-06-20T14:00:20.555063+00:00 2024-06-20 14:03:13 +00:00			`"vulnStatus": "Awaiting Analysis",`
Auto-Update: 2024-07-05T10:00:19.289814+00:00 2024-07-05 10:03:12 +00:00			`"cveTags": [],`
Auto-Update: 2024-06-18T22:00:18.589765+00:00 2024-06-18 22:03:12 +00:00			`"descriptions": [`
			`{`
			`"lang": "en",`
			"value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP\n\nIf one TCA_TAPRIO_ATTR_PRIOMAP attribute has been provided,\ntaprio_parse_mqprio_opt() must validate it, or userspace\ncan inject arbitrary data to the kernel, the second time\ntaprio_change() is called.\n\nFirst call (with valid attributes) sets dev->num_tc\nto a non zero value.\n\nSecond call (with arbitrary mqprio attributes)\nreturns early from taprio_parse_mqprio_opt()\nand bad things can happen."
Auto-Update: 2024-06-20T14:00:20.555063+00:00 2024-06-20 14:03:13 +00:00			`},`
			`{`
			`"lang": "es",`
			"value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: net/sched: taprio: validar siempre TCA_TAPRIO_ATTR_PRIOMAP Si se ha proporcionado un atributo TCA_TAPRIO_ATTR_PRIOMAP, taprio_parse_mqprio_opt() debe validarlo, o el espacio de usuario puede inyectar datos arbitrarios al kernel, la segunda vez taprio_change () se llama. La primera llamada (con atributos v\u00e1lidos) establece dev->num_tc en un valor distinto de cero. La segunda llamada (con atributos mqprio arbitrarios) regresa temprano desde taprio_parse_mqprio_opt() y pueden suceder cosas malas."
Auto-Update: 2024-06-18T22:00:18.589765+00:00 2024-06-18 22:03:12 +00:00			`}`
			`],`
			`"metrics": {},`
			`"references": [`
Auto-Update: 2024-06-21T16:00:18.124371+00:00 2024-06-21 16:03:11 +00:00			`{`
			`"url": "https://git.kernel.org/stable/c/0bf6cc96612bd396048f57d63f1ad454a846e39c",`
			`"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"`
			`},`
Auto-Update: 2024-07-05T10:00:19.289814+00:00 2024-07-05 10:03:12 +00:00			`{`
			`"url": "https://git.kernel.org/stable/c/6db4af09987cc5d5f0136bd46148b0e0460dae5b",`
			`"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"`
			`},`
Auto-Update: 2024-06-21T16:00:18.124371+00:00 2024-06-21 16:03:11 +00:00			`{`
			`"url": "https://git.kernel.org/stable/c/724050ae4b76e4fae05a923cb54101d792cf4404",`
			`"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"`
			`},`
			`{`
			`"url": "https://git.kernel.org/stable/c/c37a27a35eadb59286c9092c49c241270c802ae2",`
			`"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"`
			`},`
Auto-Update: 2024-07-05T10:00:19.289814+00:00 2024-07-05 10:03:12 +00:00			`{`
			`"url": "https://git.kernel.org/stable/c/c6041e7124464ce7e896ee3f912897ce88a0c4ec",`
			`"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"`
			`},`
			`{`
			`"url": "https://git.kernel.org/stable/c/d3dde4c217f0c31ab0621912e682b57e677dd923",`
			`"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"`
			`},`
Auto-Update: 2024-06-18T22:00:18.589765+00:00 2024-06-18 22:03:12 +00:00			`{`
			`"url": "https://git.kernel.org/stable/c/f921a58ae20852d188f70842431ce6519c4fdc36",`
			`"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"`
Auto-Update: 2024-12-08T03:00:18.988682+00:00 2024-12-08 03:06:42 +00:00			`},`
			`{`
			`"url": "https://git.kernel.org/stable/c/0bf6cc96612bd396048f57d63f1ad454a846e39c",`
			`"source": "af854a3a-2127-422b-91ae-364da2661108"`
			`},`
			`{`
			`"url": "https://git.kernel.org/stable/c/6db4af09987cc5d5f0136bd46148b0e0460dae5b",`
			`"source": "af854a3a-2127-422b-91ae-364da2661108"`
			`},`
			`{`
			`"url": "https://git.kernel.org/stable/c/724050ae4b76e4fae05a923cb54101d792cf4404",`
			`"source": "af854a3a-2127-422b-91ae-364da2661108"`
			`},`
			`{`
			`"url": "https://git.kernel.org/stable/c/c37a27a35eadb59286c9092c49c241270c802ae2",`
			`"source": "af854a3a-2127-422b-91ae-364da2661108"`
			`},`
			`{`
			`"url": "https://git.kernel.org/stable/c/c6041e7124464ce7e896ee3f912897ce88a0c4ec",`
			`"source": "af854a3a-2127-422b-91ae-364da2661108"`
			`},`
			`{`
			`"url": "https://git.kernel.org/stable/c/d3dde4c217f0c31ab0621912e682b57e677dd923",`
			`"source": "af854a3a-2127-422b-91ae-364da2661108"`
			`},`
			`{`
			`"url": "https://git.kernel.org/stable/c/f921a58ae20852d188f70842431ce6519c4fdc36",`
			`"source": "af854a3a-2127-422b-91ae-364da2661108"`
Auto-Update: 2024-06-18T22:00:18.589765+00:00 2024-06-18 22:03:12 +00:00			`}`
			`]`
			`}`