CVE-2024-36288 - Vulnerability Details

Vendors	Products
Linux	Linux Kernel

Link	Providers
https://git.kernel.org/stable/c/0a1cb0c6102bb4fd310243588d39461da49497ad
https://git.kernel.org/stable/c/4a77c3dead97339478c7422eb07bf4bf63577008
https://git.kernel.org/stable/c/4cefcd0af7458bdeff56a9d8dfc6868ce23d128a
https://git.kernel.org/stable/c/57ff6c0a175930856213b2aa39f8c845a53e5b1c
https://git.kernel.org/stable/c/6ed45d20d30005bed94c8c527ce51d5ad8121018
https://git.kernel.org/stable/c/af628d43a822b78ad8d4a58d8259f8bf8bc71115
https://git.kernel.org/stable/c/b4878ea99f2b40ef1925720b1b4ca7f4af1ba785
https://git.kernel.org/stable/c/f9977e4e0cd98a5f06f2492b4f3547db58deabf5
https://lore.kernel.org/linux-cve-announce/2024062150-CVE-2024-36288-d24a@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2024-36288
https://www.cve.org/CVERecord?id=CVE-2024-36288

Show plain JSON

{"dataType": "CVE_RECORD", "cveMetadata": {"cveId": "CVE-2024-36288", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2024-06-21T11:16:40.621Z", "datePublished": "2024-06-21T11:18:46.152Z", "dateUpdated": "2024-12-19T09:01:07.206Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2024-12-19T09:01:07.206Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nSUNRPC: Fix loop termination condition in gss_free_in_token_pages()\n\nThe in_token->pages[] array is not NULL terminated. This results in\nthe following KASAN splat:\n\n  KASAN: maybe wild-memory-access in range [0x04a2013400000008-0x04a201340000000f]"}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["net/sunrpc/auth_gss/svcauth_gss.c"], "versions": [{"version": "ab8466d4e26806a4ae82c282762c4545eecf45ef", "lessThan": "57ff6c0a175930856213b2aa39f8c845a53e5b1c", "status": "affected", "versionType": "git"}, {"version": "4420b73c7f26fd5fcb37bbce5313dd356ef1b3ca", "lessThan": "6ed45d20d30005bed94c8c527ce51d5ad8121018", "status": "affected", "versionType": "git"}, {"version": "f148a95f68c66c1b097391b68e153d5a46f0e780", "lessThan": "4cefcd0af7458bdeff56a9d8dfc6868ce23d128a", "status": "affected", "versionType": "git"}, {"version": "fe0b474974fee7af1df286e0edd5a1460c811865", "lessThan": "b4878ea99f2b40ef1925720b1b4ca7f4af1ba785", "status": "affected", "versionType": "git"}, {"version": "879fe60fccd5406ac75067750c3b7c22097eed49", "lessThan": "f9977e4e0cd98a5f06f2492b4f3547db58deabf5", "status": "affected", "versionType": "git"}, {"version": "c1d8c429e4d2ce85ec5c92cf71cb419baf75c56f", "lessThan": "af628d43a822b78ad8d4a58d8259f8bf8bc71115", "status": "affected", "versionType": "git"}, {"version": "8ca148915670a2921afcc255af9e1dc80f37b052", "lessThan": "0a1cb0c6102bb4fd310243588d39461da49497ad", "status": "affected", "versionType": "git"}, {"version": "bafa6b4d95d97877baa61883ff90f7e374427fae", "lessThan": "4a77c3dead97339478c7422eb07bf4bf63577008", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["net/sunrpc/auth_gss/svcauth_gss.c"], "versions": [{"version": "6.9.3", "lessThan": "6.9.4", "status": "affected", "versionType": "semver"}]}], "references": [{"url": "https://git.kernel.org/stable/c/57ff6c0a175930856213b2aa39f8c845a53e5b1c"}, {"url": "https://git.kernel.org/stable/c/6ed45d20d30005bed94c8c527ce51d5ad8121018"}, {"url": "https://git.kernel.org/stable/c/4cefcd0af7458bdeff56a9d8dfc6868ce23d128a"}, {"url": "https://git.kernel.org/stable/c/b4878ea99f2b40ef1925720b1b4ca7f4af1ba785"}, {"url": "https://git.kernel.org/stable/c/f9977e4e0cd98a5f06f2492b4f3547db58deabf5"}, {"url": "https://git.kernel.org/stable/c/af628d43a822b78ad8d4a58d8259f8bf8bc71115"}, {"url": "https://git.kernel.org/stable/c/0a1cb0c6102bb4fd310243588d39461da49497ad"}, {"url": "https://git.kernel.org/stable/c/4a77c3dead97339478c7422eb07bf4bf63577008"}], "title": "SUNRPC: Fix loop termination condition in gss_free_in_token_pages()", "x_generator": {"engine": "bippy-5f407fcff5a0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-06-21T13:05:00.955390Z", "id": "CVE-2024-36288", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-06-21T13:05:08.602Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T03:37:04.682Z"}, "title": "CVE Program Container", "references": [{"url": "https://git.kernel.org/stable/c/57ff6c0a175930856213b2aa39f8c845a53e5b1c", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/6ed45d20d30005bed94c8c527ce51d5ad8121018", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/4cefcd0af7458bdeff56a9d8dfc6868ce23d128a", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/b4878ea99f2b40ef1925720b1b4ca7f4af1ba785", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/f9977e4e0cd98a5f06f2492b4f3547db58deabf5", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/af628d43a822b78ad8d4a58d8259f8bf8bc71115", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/0a1cb0c6102bb4fd310243588d39461da49497ad", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/4a77c3dead97339478c7422eb07bf4bf63577008", "tags": ["x_transferred"]}]}]}, "dataVersion": "5.1"}

{

dataType : CVE_RECORD (string)

cveMetadata : { »

cveId : CVE-2024-36288 (string)

assignerOrgId : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

state : PUBLISHED (string)

assignerShortName : Linux (string)

dateReserved : 2024-06-21T11:16:40.621Z (string)

datePublished : 2024-06-21T11:18:46.152Z (string)

dateUpdated : 2024-12-19T09:01:07.206Z (string)

}

containers : { »

cna : { »

providerMetadata : { »

orgId : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

shortName : Linux (string)

dateUpdated : 2024-12-19T09:01:07.206Z (string)

}

descriptions : [ »

0 : { »

lang : en (string)

value : In the Linux kernel, the following vulnerability has been resolved: SUNRPC: Fix loop termination condition in gss_free_in_token_pages() The in_token->pages[] array is not NULL terminated. This results in the following KASAN splat: KASAN: maybe wild-memory-access in range [0x04a2013400000008-0x04a201340000000f] (string)

}

]

affected : [ »

0 : { »

product : Linux (string)

vendor : Linux (string)

defaultStatus : unaffected (string)

repo : https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git (string)

programFiles : [ »

0 : net/sunrpc/auth_gss/svcauth_gss.c (string)

]

versions : [ »

0 : { »

version : ab8466d4e26806a4ae82c282762c4545eecf45ef (string)

lessThan : 57ff6c0a175930856213b2aa39f8c845a53e5b1c (string)

status : affected (string)

versionType : git (string)

}

1 : { »

version : 4420b73c7f26fd5fcb37bbce5313dd356ef1b3ca (string)

lessThan : 6ed45d20d30005bed94c8c527ce51d5ad8121018 (string)

status : affected (string)

versionType : git (string)

}

2 : { »

version : f148a95f68c66c1b097391b68e153d5a46f0e780 (string)

lessThan : 4cefcd0af7458bdeff56a9d8dfc6868ce23d128a (string)

status : affected (string)

versionType : git (string)

}

3 : { »

version : fe0b474974fee7af1df286e0edd5a1460c811865 (string)

lessThan : b4878ea99f2b40ef1925720b1b4ca7f4af1ba785 (string)

status : affected (string)

versionType : git (string)

}

4 : { »

version : 879fe60fccd5406ac75067750c3b7c22097eed49 (string)

lessThan : f9977e4e0cd98a5f06f2492b4f3547db58deabf5 (string)

status : affected (string)

versionType : git (string)

}

5 : { »

version : c1d8c429e4d2ce85ec5c92cf71cb419baf75c56f (string)

lessThan : af628d43a822b78ad8d4a58d8259f8bf8bc71115 (string)

status : affected (string)

versionType : git (string)

}

6 : { »

version : 8ca148915670a2921afcc255af9e1dc80f37b052 (string)

lessThan : 0a1cb0c6102bb4fd310243588d39461da49497ad (string)

status : affected (string)

versionType : git (string)

}

7 : { »

version : bafa6b4d95d97877baa61883ff90f7e374427fae (string)

lessThan : 4a77c3dead97339478c7422eb07bf4bf63577008 (string)

status : affected (string)

versionType : git (string)

}

]

}

1 : { »

product : Linux (string)

vendor : Linux (string)

defaultStatus : unaffected (string)

repo : https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git (string)

programFiles : [ »

0 : net/sunrpc/auth_gss/svcauth_gss.c (string)

]

versions : [ »

0 : { »

version : 6.9.3 (string)

lessThan : 6.9.4 (string)

status : affected (string)

versionType : semver (string)

}

]

}

]

references : [ »

0 : { »

url : https://git.kernel.org/stable/c/57ff6c0a175930856213b2aa39f8c845a53e5b1c (string)

}

1 : { »

url : https://git.kernel.org/stable/c/6ed45d20d30005bed94c8c527ce51d5ad8121018 (string)

}

2 : { »

url : https://git.kernel.org/stable/c/4cefcd0af7458bdeff56a9d8dfc6868ce23d128a (string)

}

3 : { »

url : https://git.kernel.org/stable/c/b4878ea99f2b40ef1925720b1b4ca7f4af1ba785 (string)

}

4 : { »

url : https://git.kernel.org/stable/c/f9977e4e0cd98a5f06f2492b4f3547db58deabf5 (string)

}

5 : { »

url : https://git.kernel.org/stable/c/af628d43a822b78ad8d4a58d8259f8bf8bc71115 (string)

}

6 : { »

url : https://git.kernel.org/stable/c/0a1cb0c6102bb4fd310243588d39461da49497ad (string)

}

7 : { »

url : https://git.kernel.org/stable/c/4a77c3dead97339478c7422eb07bf4bf63577008 (string)

}

]

title : SUNRPC: Fix loop termination condition in gss_free_in_token_pages() (string)

x_generator : { »

engine : bippy-5f407fcff5a0 (string)

}

adp : [ »

0 : { »

metrics : [ »

0 : { »

other : { »

type : ssvc (string)

content : { »

timestamp : 2024-06-21T13:05:00.955390Z (string)

id : CVE-2024-36288 (string)

options : [ »

0 : { »

Exploitation : none (string)

}

1 : { »

Automatable : no (string)

}

2 : { »

Technical Impact : partial (string)

}

]

role : CISA Coordinator (string)

version : 2.0.3 (string)

}

]

title : CISA ADP Vulnrichment (string)

providerMetadata : { »

orgId : 134c704f-9b21-4f2e-91b3-4a467353bcc0 (string)

shortName : CISA-ADP (string)

dateUpdated : 2024-06-21T13:05:08.602Z (string)

}

1 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-02T03:37:04.682Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

url : https://git.kernel.org/stable/c/57ff6c0a175930856213b2aa39f8c845a53e5b1c (string)

tags : [ »

0 : x_transferred (string)

]

}

1 : { »

url : https://git.kernel.org/stable/c/6ed45d20d30005bed94c8c527ce51d5ad8121018 (string)

tags : [ »

0 : x_transferred (string)

]

}

2 : { »

url : https://git.kernel.org/stable/c/4cefcd0af7458bdeff56a9d8dfc6868ce23d128a (string)

tags : [ »

0 : x_transferred (string)

]

}

3 : { »

url : https://git.kernel.org/stable/c/b4878ea99f2b40ef1925720b1b4ca7f4af1ba785 (string)

tags : [ »

0 : x_transferred (string)

]

}

4 : { »

url : https://git.kernel.org/stable/c/f9977e4e0cd98a5f06f2492b4f3547db58deabf5 (string)

tags : [ »

0 : x_transferred (string)

]

}

5 : { »

url : https://git.kernel.org/stable/c/af628d43a822b78ad8d4a58d8259f8bf8bc71115 (string)

tags : [ »

0 : x_transferred (string)

]

}

6 : { »

url : https://git.kernel.org/stable/c/0a1cb0c6102bb4fd310243588d39461da49497ad (string)

tags : [ »

0 : x_transferred (string)

]

}

7 : { »

url : https://git.kernel.org/stable/c/4a77c3dead97339478c7422eb07bf4bf63577008 (string)

tags : [ »

0 : x_transferred (string)

]

}

]

}

]

}

dataVersion : 5.1 (string)

}

Show plain JSON

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://git.kernel.org/stable/c/57ff6c0a175930856213b2aa39f8c845a53e5b1c", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/6ed45d20d30005bed94c8c527ce51d5ad8121018", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/4cefcd0af7458bdeff56a9d8dfc6868ce23d128a", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/b4878ea99f2b40ef1925720b1b4ca7f4af1ba785", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/f9977e4e0cd98a5f06f2492b4f3547db58deabf5", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/af628d43a822b78ad8d4a58d8259f8bf8bc71115", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/0a1cb0c6102bb4fd310243588d39461da49497ad", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/4a77c3dead97339478c7422eb07bf4bf63577008", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T03:37:04.682Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-36288", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-06-21T13:05:00.955390Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-06-21T13:05:05.416Z"}}], "cna": {"title": "SUNRPC: Fix loop termination condition in gss_free_in_token_pages()", "affected": [{"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "vendor": "Linux", "product": "Linux", "versions": [{"status": "affected", "version": "ab8466d4e268", "lessThan": "57ff6c0a1759", "versionType": "git"}, {"status": "affected", "version": "4420b73c7f26", "lessThan": "6ed45d20d300", "versionType": "git"}, {"status": "affected", "version": "f148a95f68c6", "lessThan": "4cefcd0af745", "versionType": "git"}, {"status": "affected", "version": "fe0b474974fe", "lessThan": "b4878ea99f2b", "versionType": "git"}, {"status": "affected", "version": "879fe60fccd5", "lessThan": "f9977e4e0cd9", "versionType": "git"}, {"status": "affected", "version": "c1d8c429e4d2", "lessThan": "af628d43a822", "versionType": "git"}, {"status": "affected", "version": "8ca148915670", "lessThan": "0a1cb0c6102b", "versionType": "git"}, {"status": "affected", "version": "bafa6b4d95d9", "lessThan": "4a77c3dead97", "versionType": "git"}], "programFiles": ["net/sunrpc/auth_gss/svcauth_gss.c"], "defaultStatus": "unaffected"}, {"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "vendor": "Linux", "product": "Linux", "versions": [{"status": "affected", "version": "6.9.3", "lessThan": "6.9.4", "versionType": "custom"}], "programFiles": ["net/sunrpc/auth_gss/svcauth_gss.c"], "defaultStatus": "unaffected"}], "references": [{"url": "https://git.kernel.org/stable/c/57ff6c0a175930856213b2aa39f8c845a53e5b1c"}, {"url": "https://git.kernel.org/stable/c/6ed45d20d30005bed94c8c527ce51d5ad8121018"}, {"url": "https://git.kernel.org/stable/c/4cefcd0af7458bdeff56a9d8dfc6868ce23d128a"}, {"url": "https://git.kernel.org/stable/c/b4878ea99f2b40ef1925720b1b4ca7f4af1ba785"}, {"url": "https://git.kernel.org/stable/c/f9977e4e0cd98a5f06f2492b4f3547db58deabf5"}, {"url": "https://git.kernel.org/stable/c/af628d43a822b78ad8d4a58d8259f8bf8bc71115"}, {"url": "https://git.kernel.org/stable/c/0a1cb0c6102bb4fd310243588d39461da49497ad"}, {"url": "https://git.kernel.org/stable/c/4a77c3dead97339478c7422eb07bf4bf63577008"}], "x_generator": {"engine": "bippy-c9c4e1df01b2"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nSUNRPC: Fix loop termination condition in gss_free_in_token_pages()\n\nThe in_token->pages[] array is not NULL terminated. This results in\nthe following KASAN splat:\n\n  KASAN: maybe wild-memory-access in range [0x04a2013400000008-0x04a201340000000f]"}], "providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2024-07-15T06:47:00.331Z"}}}, "cveMetadata": {"cveId": "CVE-2024-36288", "state": "PUBLISHED", "dateUpdated": "2024-08-02T03:37:04.682Z", "dateReserved": "2024-06-21T11:16:40.621Z", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "datePublished": "2024-06-21T11:18:46.152Z", "assignerShortName": "Linux"}, "dataVersion": "5.1"}

{

dataType : CVE_RECORD (string)

containers : { »

adp : [ »

0 : { »

title : CVE Program Container (string)

references : [ »

0 : { »

url : https://git.kernel.org/stable/c/57ff6c0a175930856213b2aa39f8c845a53e5b1c (string)

tags : [ »

0 : x_transferred (string)

]

}

1 : { »

url : https://git.kernel.org/stable/c/6ed45d20d30005bed94c8c527ce51d5ad8121018 (string)

tags : [ »

0 : x_transferred (string)

]

}

2 : { »

url : https://git.kernel.org/stable/c/4cefcd0af7458bdeff56a9d8dfc6868ce23d128a (string)

tags : [ »

0 : x_transferred (string)

]

}

3 : { »

url : https://git.kernel.org/stable/c/b4878ea99f2b40ef1925720b1b4ca7f4af1ba785 (string)

tags : [ »

0 : x_transferred (string)

]

}

4 : { »

url : https://git.kernel.org/stable/c/f9977e4e0cd98a5f06f2492b4f3547db58deabf5 (string)

tags : [ »

0 : x_transferred (string)

]

}

5 : { »

url : https://git.kernel.org/stable/c/af628d43a822b78ad8d4a58d8259f8bf8bc71115 (string)

tags : [ »

0 : x_transferred (string)

]

}

6 : { »

url : https://git.kernel.org/stable/c/0a1cb0c6102bb4fd310243588d39461da49497ad (string)

tags : [ »

0 : x_transferred (string)

]

}

7 : { »

url : https://git.kernel.org/stable/c/4a77c3dead97339478c7422eb07bf4bf63577008 (string)

tags : [ »

0 : x_transferred (string)

]

}

]

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-02T03:37:04.682Z (string)

}

1 : { »

title : CISA ADP Vulnrichment (string)

metrics : [ »

0 : { »

other : { »

type : ssvc (string)

content : { »

id : CVE-2024-36288 (string)

role : CISA Coordinator (string)

options : [ »

0 : { »

Exploitation : none (string)

}

1 : { »

Automatable : no (string)

}

2 : { »

Technical Impact : partial (string)

}

]

version : 2.0.3 (string)

timestamp : 2024-06-21T13:05:00.955390Z (string)

}

]

providerMetadata : { »

orgId : 134c704f-9b21-4f2e-91b3-4a467353bcc0 (string)

shortName : CISA-ADP (string)

dateUpdated : 2024-06-21T13:05:05.416Z (string)

}

]

cna : { »

title : SUNRPC: Fix loop termination condition in gss_free_in_token_pages() (string)

affected : [ »

0 : { »

repo : https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git (string)

vendor : Linux (string)

product : Linux (string)

versions : [ »

0 : { »

status : affected (string)

version : ab8466d4e268 (string)

lessThan : 57ff6c0a1759 (string)

versionType : git (string)

}

1 : { »

status : affected (string)

version : 4420b73c7f26 (string)

lessThan : 6ed45d20d300 (string)

versionType : git (string)

}

2 : { »

status : affected (string)

version : f148a95f68c6 (string)

lessThan : 4cefcd0af745 (string)

versionType : git (string)

}

3 : { »

status : affected (string)

version : fe0b474974fe (string)

lessThan : b4878ea99f2b (string)

versionType : git (string)

}

4 : { »

status : affected (string)

version : 879fe60fccd5 (string)

lessThan : f9977e4e0cd9 (string)

versionType : git (string)

}

5 : { »

status : affected (string)

version : c1d8c429e4d2 (string)

lessThan : af628d43a822 (string)

versionType : git (string)

}

6 : { »

status : affected (string)

version : 8ca148915670 (string)

lessThan : 0a1cb0c6102b (string)

versionType : git (string)

}

7 : { »

status : affected (string)

version : bafa6b4d95d9 (string)

lessThan : 4a77c3dead97 (string)

versionType : git (string)

}

]

programFiles : [ »

0 : net/sunrpc/auth_gss/svcauth_gss.c (string)

]

defaultStatus : unaffected (string)

}

1 : { »

repo : https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git (string)

vendor : Linux (string)

product : Linux (string)

versions : [ »

0 : { »

status : affected (string)

version : 6.9.3 (string)

lessThan : 6.9.4 (string)

versionType : custom (string)

}

]

programFiles : [ »

0 : net/sunrpc/auth_gss/svcauth_gss.c (string)

]

defaultStatus : unaffected (string)

}

]

references : [ »

0 : { »

url : https://git.kernel.org/stable/c/57ff6c0a175930856213b2aa39f8c845a53e5b1c (string)

}

1 : { »

url : https://git.kernel.org/stable/c/6ed45d20d30005bed94c8c527ce51d5ad8121018 (string)

}

2 : { »

url : https://git.kernel.org/stable/c/4cefcd0af7458bdeff56a9d8dfc6868ce23d128a (string)

}

3 : { »

url : https://git.kernel.org/stable/c/b4878ea99f2b40ef1925720b1b4ca7f4af1ba785 (string)

}

4 : { »

url : https://git.kernel.org/stable/c/f9977e4e0cd98a5f06f2492b4f3547db58deabf5 (string)

}

5 : { »

url : https://git.kernel.org/stable/c/af628d43a822b78ad8d4a58d8259f8bf8bc71115 (string)

}

6 : { »

url : https://git.kernel.org/stable/c/0a1cb0c6102bb4fd310243588d39461da49497ad (string)

}

7 : { »

url : https://git.kernel.org/stable/c/4a77c3dead97339478c7422eb07bf4bf63577008 (string)

}

]

x_generator : { »

engine : bippy-c9c4e1df01b2 (string)

}

descriptions : [ »

0 : { »

lang : en (string)

value : In the Linux kernel, the following vulnerability has been resolved: SUNRPC: Fix loop termination condition in gss_free_in_token_pages() The in_token->pages[] array is not NULL terminated. This results in the following KASAN splat: KASAN: maybe wild-memory-access in range [0x04a2013400000008-0x04a201340000000f] (string)

}

]

providerMetadata : { »

orgId : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

shortName : Linux (string)

dateUpdated : 2024-07-15T06:47:00.331Z (string)

}

cveMetadata : { »

cveId : CVE-2024-36288 (string)

state : PUBLISHED (string)

dateUpdated : 2024-08-02T03:37:04.682Z (string)

dateReserved : 2024-06-21T11:16:40.621Z (string)

assignerOrgId : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

datePublished : 2024-06-21T11:18:46.152Z (string)

assignerShortName : Linux (string)

}

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "329978FD-8C0A-434C-8A41-06341C7675F9", "versionEndExcluding": "6.9.4", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:6.10.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "C40DD2D9-90E3-4E95-9F1A-E7C680F11F2A", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nSUNRPC: Fix loop termination condition in gss_free_in_token_pages()\n\nThe in_token->pages[] array is not NULL terminated. This results in\nthe following KASAN splat:\n\n  KASAN: maybe wild-memory-access in range [0x04a2013400000008-0x04a201340000000f]"}, {"lang": "es", "value": "En el kernel de Linux, se resolvi\u00f3 la siguiente vulnerabilidad: SUNRPC: corrigi\u00f3 la condici\u00f3n de terminaci\u00f3n del bucle en gss_free_in_token_pages() La matriz in_token-&gt;pages[] no tiene terminaci\u00f3n NULL. Esto da como resultado el siguiente s\u00edmbolo KASAN: KASAN: quiz\u00e1s acceso a memoria salvaje en el rango [0x04a2013400000008-0x04a201340000000f]"}], "id": "CVE-2024-36288", "lastModified": "2024-11-21T09:21:59.667", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2024-06-21T12:15:10.967", "references": [{"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/0a1cb0c6102bb4fd310243588d39461da49497ad"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/4a77c3dead97339478c7422eb07bf4bf63577008"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/4cefcd0af7458bdeff56a9d8dfc6868ce23d128a"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/57ff6c0a175930856213b2aa39f8c845a53e5b1c"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/6ed45d20d30005bed94c8c527ce51d5ad8121018"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/af628d43a822b78ad8d4a58d8259f8bf8bc71115"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/b4878ea99f2b40ef1925720b1b4ca7f4af1ba785"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/f9977e4e0cd98a5f06f2492b4f3547db58deabf5"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/0a1cb0c6102bb4fd310243588d39461da49497ad"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/4a77c3dead97339478c7422eb07bf4bf63577008"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/4cefcd0af7458bdeff56a9d8dfc6868ce23d128a"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/57ff6c0a175930856213b2aa39f8c845a53e5b1c"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/6ed45d20d30005bed94c8c527ce51d5ad8121018"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/af628d43a822b78ad8d4a58d8259f8bf8bc71115"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/b4878ea99f2b40ef1925720b1b4ca7f4af1ba785"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Patch"], "url": "https://git.kernel.org/stable/c/f9977e4e0cd98a5f06f2492b4f3547db58deabf5"}], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-835"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 329978FD-8C0A-434C-8A41-06341C7675F9 (string)

versionEndExcluding : 6.9.4 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:o:linux:linux_kernel:6.10.0:rc1:*:*:*:*:*:* (string)

matchCriteriaId : C40DD2D9-90E3-4E95-9F1A-E7C680F11F2A (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : In the Linux kernel, the following vulnerability has been resolved: SUNRPC: Fix loop termination condition in gss_free_in_token_pages() The in_token->pages[] array is not NULL terminated. This results in the following KASAN splat: KASAN: maybe wild-memory-access in range [0x04a2013400000008-0x04a201340000000f] (string)

}

1 : { »

lang : es (string)

value : En el kernel de Linux, se resolvió la siguiente vulnerabilidad: SUNRPC: corrigió la condición de terminación del bucle en gss_free_in_token_pages() La matriz in_token->pages[] no tiene terminación NULL. Esto da como resultado el siguiente símbolo KASAN: KASAN: quizás acceso a memoria salvaje en el rango [0x04a2013400000008-0x04a201340000000f] (string)

}

]

id : CVE-2024-36288 (string)

lastModified : 2024-11-21T09:21:59.667 (string)

metrics : { »

cvssMetricV31 : [ »

0 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : LOCAL (string)

availabilityImpact : HIGH (string)

baseScore : 5.5 (number)

baseSeverity : MEDIUM (string)

confidentialityImpact : NONE (string)

integrityImpact : NONE (string)

privilegesRequired : LOW (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H (string)

version : 3.1 (string)

}

exploitabilityScore : 1.8 (number)

impactScore : 3.6 (number)

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

published : 2024-06-21T12:15:10.967 (string)

references : [ »

0 : { »

source : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/0a1cb0c6102bb4fd310243588d39461da49497ad (string)

}

1 : { »

source : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/4a77c3dead97339478c7422eb07bf4bf63577008 (string)

}

2 : { »

source : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/4cefcd0af7458bdeff56a9d8dfc6868ce23d128a (string)

}

3 : { »

source : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/57ff6c0a175930856213b2aa39f8c845a53e5b1c (string)

}

4 : { »

source : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/6ed45d20d30005bed94c8c527ce51d5ad8121018 (string)

}

5 : { »

source : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/af628d43a822b78ad8d4a58d8259f8bf8bc71115 (string)

}

6 : { »

source : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/b4878ea99f2b40ef1925720b1b4ca7f4af1ba785 (string)

}

7 : { »

source : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/f9977e4e0cd98a5f06f2492b4f3547db58deabf5 (string)

}

8 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/0a1cb0c6102bb4fd310243588d39461da49497ad (string)

}

9 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/4a77c3dead97339478c7422eb07bf4bf63577008 (string)

}

10 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/4cefcd0af7458bdeff56a9d8dfc6868ce23d128a (string)

}

11 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/57ff6c0a175930856213b2aa39f8c845a53e5b1c (string)

}

12 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/6ed45d20d30005bed94c8c527ce51d5ad8121018 (string)

}

13 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/af628d43a822b78ad8d4a58d8259f8bf8bc71115 (string)

}

14 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/b4878ea99f2b40ef1925720b1b4ca7f4af1ba785 (string)

}

15 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Mailing List (string)

1 : Patch (string)

]

url : https://git.kernel.org/stable/c/f9977e4e0cd98a5f06f2492b4f3547db58deabf5 (string)

}

]

sourceIdentifier : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

vulnStatus : Modified (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-835 (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Show plain JSON

{"bugzilla": {"description": "kernel: SUNRPC: Fix loop termination condition in gss_free_in_token_pages()", "id": "2293645", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293645"}, "csaw": false, "cvss3": {"cvss3_base_score": "5.5", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "status": "draft"}, "cwe": "CWE-119", "details": ["In the Linux kernel, the following vulnerability has been resolved:\nSUNRPC: Fix loop termination condition in gss_free_in_token_pages()\nThe in_token->pages[] array is not NULL terminated. This results in\nthe following KASAN splat:\nKASAN: maybe wild-memory-access in range [0x04a2013400000008-0x04a201340000000f]"], "name": "CVE-2024-36288", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Out of support scope", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Out of support scope", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Out of support scope", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 9"}], "public_date": "2024-06-21T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2024-36288\nhttps://nvd.nist.gov/vuln/detail/CVE-2024-36288\nhttps://lore.kernel.org/linux-cve-announce/2024062150-CVE-2024-36288-d24a@gregkh/T"], "threat_severity": "Moderate"}

{

bugzilla : { »

description : kernel: SUNRPC: Fix loop termination condition in gss_free_in_token_pages() (string)

id : 2293645 (string)

url : https://bugzilla.redhat.com/show_bug.cgi?id=2293645 (string)

}

csaw : false (boolean)

cvss3 : { »

cvss3_base_score : 5.5 (string)

cvss3_scoring_vector : CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H (string)

status : draft (string)

}

cwe : CWE-119 (string)

details : [ »

0 : In the Linux kernel, the following vulnerability has been resolved: SUNRPC: Fix loop termination condition in gss_free_in_token_pages() The in_token->pages[] array is not NULL terminated. This results in the following KASAN splat: KASAN: maybe wild-memory-access in range [0x04a2013400000008-0x04a201340000000f] (string)

]

name : CVE-2024-36288 (string)

package_state : [ »

0 : { »

cpe : cpe:/o:redhat:enterprise_linux:6 (string)

fix_state : Out of support scope (string)

package_name : kernel (string)

product_name : Red Hat Enterprise Linux 6 (string)

}

1 : { »

cpe : cpe:/o:redhat:enterprise_linux:7 (string)

fix_state : Out of support scope (string)

package_name : kernel (string)

product_name : Red Hat Enterprise Linux 7 (string)

}

2 : { »

cpe : cpe:/o:redhat:enterprise_linux:7 (string)

fix_state : Out of support scope (string)

package_name : kernel-rt (string)

product_name : Red Hat Enterprise Linux 7 (string)

}

3 : { »

cpe : cpe:/o:redhat:enterprise_linux:8 (string)

fix_state : Not affected (string)

package_name : kernel (string)

product_name : Red Hat Enterprise Linux 8 (string)

}

4 : { »

cpe : cpe:/o:redhat:enterprise_linux:8 (string)

fix_state : Not affected (string)

package_name : kernel-rt (string)

product_name : Red Hat Enterprise Linux 8 (string)

}

5 : { »

cpe : cpe:/o:redhat:enterprise_linux:9 (string)

fix_state : Not affected (string)

package_name : kernel (string)

product_name : Red Hat Enterprise Linux 9 (string)

}

6 : { »

cpe : cpe:/o:redhat:enterprise_linux:9 (string)

fix_state : Not affected (string)

package_name : kernel-rt (string)

product_name : Red Hat Enterprise Linux 9 (string)

}

]

public_date : 2024-06-21T00:00:00Z (string)

references : [ »

0 : https://www.cve.org/CVERecord?id=CVE-2024-36288 https://nvd.nist.gov/vuln/detail/CVE-2024-36288 https://lore.kernel.org/linux-cve-announce/2024062150-CVE-2024-36288-d24a@gregkh/T (string)

]

threat_severity : Moderate (string)

}

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Affected Vendors & Products

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object