CVE-2024-8037
published 2024-10-02CVE-2024-8037: Vulnerable juju hook tool abstract UNIX domain socket. When combined with an attack of JUJU_CONTEXT_ID, any user on the local system with access to the default…
PriorityP429medium6.5CVSS 3.1
AVLACHPRLUINSUCLIHAH
EPSS
0.18%
8.3th percentile
Vulnerable juju hook tool abstract UNIX domain socket. When combined with an attack of JUJU_CONTEXT_ID, any user on the local system with access to the default network namespace may connect to the @/var/lib/juju/agents/unit-xxxx-yyyy/agent.socket and perform actions that are normally reserved to a juju charm.
Affected
12 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | juju | < 2.9.51 | 2.9.51 |
| canonical | juju | >= 3.1.0 < 3.1.10 | 3.1.10 |
| canonical | juju | 3.2.0 – 3.2.4 | — |
| canonical | juju | >= 3.3.0 < 3.3.7 | 3.3.7 |
| canonical | juju | >= 3.4 < 3.4.6 | 3.4.6 |
| canonical | juju | >= 3.5.0 < 3.5.4 | 3.5.4 |
| canonical_ltd | juju | >= 2.9 < 2.9.51 | 2.9.51 |
| canonical_ltd | juju | >= 3.1 < 3.1.10 | 3.1.10 |
| canonical_ltd | juju | >= 3.3 < 3.3.7 | 3.3.7 |
| canonical_ltd | juju | >= 3.4 < 3.4.6 | 3.4.6 |
| canonical_ltd | juju | >= 3.5 < 3.5.4 | 3.5.4 |
| github.com | juju_juju | >= 0 < 0.0.0-20240820065804-2f2ec128ef5a | 0.0.0-20240820065804-2f2ec128ef5a |
CVSS provenance
nvdv3.16.5MEDIUMCVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H
vendor_redhat5.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Vulnerable juju hook tool abstract UNIX domain socket in github.com/juju/juju
osv·2024-10-09
CVE-2024-8037 Vulnerable juju hook tool abstract UNIX domain socket in github.com/juju/juju
Vulnerable juju hook tool abstract UNIX domain socket in github.com/juju/juju
Vulnerable juju hook tool abstract UNIX domain socket in github.com/juju/juju
GHSA
Vulnerable juju hook tool abstract UNIX domain socket
ghsa·2024-10-03
CVE-2024-8037 [MEDIUM] CWE-284 Vulnerable juju hook tool abstract UNIX domain socket
Vulnerable juju hook tool abstract UNIX domain socket
### Impact
When combined with an attack of `JUJU_CONTEXT_ID`, any user on the local system with access to the default network namespace may connect to the `@/var/lib/juju/agents/unit-xxxx-yyyy/agent.socket` and perform actions that are normally reserved to a juju charm.
### Patches
Patch: https://github.com/juju/juju/commit/2f2ec128ef5a8ca81fc86ae79cfcdbab0007c206
Patched in:
- 3.5.4
- 3.4.6
- 3.3.7
- 3.1.10
- 2.9.51
### Workarounds
No workarounds available.
### References
[GHSA-mh98-763h-m9v4](https://github.com/juju/juju/security/advisories/GHSA-mh98-763h-m9v4)
https://github.com/juju/juju/blob/725800953aaa29dbeda4f806097bf838e61644dd/worker/uniter/paths.go#L222
OSV
Vulnerable juju hook tool abstract UNIX domain socket
osv·2024-10-03
CVE-2024-8037 [MEDIUM] Vulnerable juju hook tool abstract UNIX domain socket
Vulnerable juju hook tool abstract UNIX domain socket
### Impact
When combined with an attack of `JUJU_CONTEXT_ID`, any user on the local system with access to the default network namespace may connect to the `@/var/lib/juju/agents/unit-xxxx-yyyy/agent.socket` and perform actions that are normally reserved to a juju charm.
### Patches
Patch: https://github.com/juju/juju/commit/2f2ec128ef5a8ca81fc86ae79cfcdbab0007c206
Patched in:
- 3.5.4
- 3.4.6
- 3.3.7
- 3.1.10
- 2.9.51
### Workarounds
No workarounds available.
### References
[GHSA-mh98-763h-m9v4](https://github.com/juju/juju/security/advisories/GHSA-mh98-763h-m9v4)
https://github.com/juju/juju/blob/725800953aaa29dbeda4f806097bf838e61644dd/worker/uniter/paths.go#L222
Red Hat
kernel: net/smc: fix lacks of icsk_syn_mss with IPPROTO_SMC
vendor_redhat·2024-10-21·CVSS 5.5
CVE-2024-50034 [MEDIUM] CWE-476 kernel: net/smc: fix lacks of icsk_syn_mss with IPPROTO_SMC
kernel: net/smc: fix lacks of icsk_syn_mss with IPPROTO_SMC
In the Linux kernel, the following vulnerability has been resolved:
net/smc: fix lacks of icsk_syn_mss with IPPROTO_SMC
Eric report a panic on IPPROTO_SMC, and give the facts
that when INET_PROTOSW_ICSK was set, icsk->icsk_sync_mss must be set too.
Bug: Unable to handle kernel NULL pointer dereference at virtual address
0000000000000000
Mem abort info:
ESR = 0x0000000086000005
EC = 0x21: IABT (current EL), IL = 32 bits
SET = 0, FnV = 0
EA = 0, S1PTW = 0
FSC = 0x05: level 1 translation fault
user pgtable: 4k pages, 48-bit VAs, pgdp=00000001195d1000
[0000000000000000] pgd=0800000109c46003, p4d=0800000109c46003,
pud=0000000000000000
Internal error: Oops: 0000000086000005 [#1] PREEMPT SMP
Modules linked in:
CPU: 1 UID: 0 PID: 8037 Co
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2024-10-02
Published