CVE-2024-35827Integer Overflow or Wraparound in Linux

CWE-190Integer Overflow or Wraparound17 documents8 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 90.09%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
7
LinuxLinux KernelDebian Linux+4 more
Timeline
PublishedMay 17
Latest updateJul 4

Description

In the Linux kernel, the following vulnerability has been resolved: io_uring/net: fix overflow check in io_recvmsg_mshot_prep() The "controllen" variable is type size_t (unsigned long). Casting it to int could lead to an integer underflow. The check_add_overflow() function considers the type of the destination which is type int. If we add two positive values and the result cannot fit in an integer then that's counted as an overflow. However, if we cast "controllen" to an int and it turns neg

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages9 packages

NVDlinux/linux_kernel6.06.1.83+3
Debianlinux/linux_kernel< 6.1.85-1+2
Ubuntulinux/linux_kernel< 6.8.0-35.35
CVEListV5linux/linux9b0fc3c054ff2eb13753104884f1045b5bb3a627868ec868616438df487b9e2baa5a99f8662cc47c+5
debiandebian/linux< linux 6.1.85-1 (bookworm)

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

7
OSV
linux-oracle vulnerabilities2024-07-04
OSV
linux-azure, linux-gke vulnerabilities2024-06-14
OSV
linux-oem-6.8 vulnerabilities2024-06-11
OSV
linux, linux-ibm, linux-lowlatency, linux-raspi vulnerabilities2024-06-07
OSV
linux-aws, linux-gcp vulnerabilities2024-06-07

📋Vendor Advisories

8
Ubuntu
Linux kernel (Oracle) vulnerabilities2024-07-04
Ubuntu
Linux kernel vulnerabilities2024-06-14
Ubuntu
Linux kernel (OEM) vulnerabilities2024-06-11
Ubuntu
Linux kernel vulnerabilities2024-06-07
Ubuntu
Linux kernel vulnerabilities2024-06-07

💬Community

1
Bugzilla
CVE-2024-35827 kernel: io_uring/net: fix overflow check in io_recvmsg_mshot_prep()2024-05-17