CVE-2024-47659Improper Authentication in Linux

CWE-287Improper Authentication53 documents7 sources
Severity
8.8HIGHNVD
OSV7.1OSV5.5OSV4.7
EPSS
0.4%
top 38.77%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
LinuxLinux KernelDebian Linux+1 more
Timeline
PublishedOct 9
Latest updateMar 24

Description

In the Linux kernel, the following vulnerability has been resolved: smack: tcp: ipv4, fix incorrect labeling Currently, Smack mirrors the label of incoming tcp/ipv4 connections: when a label 'foo' connects to a label 'bar' with tcp/ipv4, 'foo' always gets 'foo' in returned ipv4 packets. So, 1) returned packets are incorrectly labeled ('foo' instead of 'bar') 2) 'bar' can write to 'foo' without being authorized to write. Here is a scenario how to see this: * Take two machines, let's call them

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages6 packages

NVDlinux/linux_kernel4.205.4.284+6
Debianlinux/linux_kernel< 6.1.112-1+2
Ubuntulinux/linux_kernel< 5.4.0-200.220+4
CVEListV5linux/linux07feee8f812f7327a46186f7604df312c8c81962d3f56c653c65f170b172d3c23120bc64ada645d8+8
debiandebian/linux< linux 6.1.112-1 (bookworm)

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

26
OSV
linux-azure, linux-azure-4.15 vulnerabilities2026-03-24
OSV
linux-azure vulnerabilities2026-03-24
OSV
linux-azure-fips vulnerabilities2026-03-24
OSV
linux, linux-aws, linux-aws-hwe, linux-gcp, linux-gcp-4.15, linux-hwe, linux-kvm, linux-oracle vulnerabilities2026-03-20
OSV
linux-aws-fips, linux-fips, linux-gcp-fips vulnerabilities2026-03-20

📋Vendor Advisories

26
Ubuntu
Linux kernel (Azure FIPS) vulnerabilities2026-03-24
Ubuntu
Linux kernel (Azure) vulnerabilities2026-03-24
Ubuntu
Linux kernel (Azure) vulnerabilities2026-03-24
Ubuntu
Linux kernel (FIPS) vulnerabilities2026-03-20
Ubuntu
Linux kernel vulnerabilities2026-03-20