CVE-2024-27414
Description
In the Linux kernel, the following vulnerability has been resolved:rtnetlink: fix error logic of IFLA_BRIDGE_FLAGS writing backIn the commit d73ef2d69c0d (rtnetlink: let rtnl_bridge_setlink checksIFLA_BRIDGE_MODE length), an adjustment was made to the old loop logicin the function rtnl_bridge_setlink to enable the loop to also checkthe length of the IFLA_BRIDGE_MODE attribute. However, this adjustmentremoved the break statement and led to an error logic of the flagswriting back at the end of this function.if (have_flags) memcpy(nla_data(attr), &flags, sizeof(flags)); // attr should point to IFLA_BRIDGE_FLAGS NLA !!!Before the mentioned commit, the attr is granted to be IFLA_BRIDGE_FLAGS.However, this is not necessarily true fow now as the updated loop will letthe attr point to the last NLA, even an invalid NLA which could causeoverflow writes.This patch introduces a new variable br_flag to save the NLA pointerthat points to IFLA_BRIDGE_FLAGS and uses it to resolve the mentionederror logic.
Risk Information
Base Score
5.5
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.021
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Linux kernel (USN-6820-1) linux-image-5.15.0-1062-gcp_5.15.0-1062.70_amd64.deb | Linux |
| Linux kernel (USN-6820-1) linux-image-5.15.0-1062-gcp_5.15.0-1062.70~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-6820-1) linux-image-5.15.0-110-lowlatency_5.15.0-110.120_amd64.deb | Linux |
| Linux kernel (USN-6820-1) linux-image-5.15.0-110-lowlatency_5.15.0-110.120~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-6820-1) linux-image-5.15.0-112-generic_5.15.0-112.122_amd64.deb | Linux |
| Linux kernel (USN-6820-1) linux-image-gcp_5.15.0.1062.70~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-6820-1) linux-image-gcp-lts-22.04_5.15.0.1062.58_amd64.deb | Linux |
| Linux kernel (USN-6820-1) linux-image-generic_5.15.0.112.112_amd64.deb | Linux |
| Linux kernel (USN-6820-1) linux-image-lowlatency_5.15.0.110.103_amd64.deb | Linux |
| Linux kernel (USN-6820-1) linux-image-lowlatency-hwe-20.04_5.15.0.110.120~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-6820-1) linux-image-virtual_5.15.0.112.112_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-6821-1) linux-image-5.15.0-1056-ibm_5.15.0-1056.59_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-6821-1) linux-image-5.15.0-1058-intel-iotg_5.15.0-1058.64_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-6821-1) linux-image-5.15.0-1060-gke_5.15.0-1060.66_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-6821-1) linux-image-5.15.0-1061-oracle_5.15.0-1061.67_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-6821-1) linux-image-gke_5.15.0.1060.59_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-6821-1) linux-image-gke-5.15_5.15.0.1060.59_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-6821-1) linux-image-ibm_5.15.0.1056.52_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-6821-1) linux-image-intel-iotg_5.15.0.1058.58_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-6821-1) linux-image-oracle-lts-22.04_5.15.0.1061.57_amd64.deb | Linux |
| Linux kernel for NVIDIA systems (USN-6820-2) linux-image-5.15.0-1058-nvidia_5.15.0-1058.59_amd64.deb | Linux |
| Linux kernel for NVIDIA systems (USN-6820-2) linux-image-5.15.0-1058-nvidia-lowlatency_5.15.0-1058.59_amd64.deb | Linux |
| Linux kernel for NVIDIA systems (USN-6820-2) linux-image-nvidia_5.15.0.1058.58_amd64.deb | Linux |
| Linux kernel for NVIDIA systems (USN-6820-2) linux-image-nvidia-lowlatency_5.15.0.1058.58_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-6821-2) linux-image-5.15.0-1046-gkeop_5.15.0-1046.53_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-6821-2) linux-image-5.15.0-1046-gkeop_5.15.0-1046.53~20.04.1_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-6821-2) linux-image-5.15.0-1060-kvm_5.15.0-1060.65_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-6821-2) linux-image-gkeop_5.15.0.1046.45_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-6821-2) linux-image-gkeop-5.15_5.15.0.1046.45_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-6821-2) linux-image-gkeop-5.15_5.15.0.1046.53~20.04.1_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-6821-2) linux-image-kvm_5.15.0.1060.56_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-6821-3) linux-image-5.15.0-1063-aws_5.15.0-1063.69_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-6821-3) linux-image-5.15.0-1063-aws_5.15.0-1063.69~20.04.1_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-6821-3) linux-image-aws_5.15.0.1063.69~20.04.1_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-6821-3) linux-image-aws-lts-22.04_5.15.0.1063.63_amd64.deb | Linux |
| Linux kernel for Intel IoT platforms (USN-6828-1) linux-image-5.15.0-1058-intel-iotg_5.15.0-1058.64~20.04.1_amd64.deb | Linux |
| Linux kernel for Intel IoT platforms (USN-6828-1) linux-image-intel_5.15.0.1058.64~20.04.1_amd64.deb | Linux |
| Linux kernel for Intel IoT platforms (USN-6828-1) linux-image-intel-iotg_5.15.0.1058.64~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-6831-1) linux-image-5.4.0-1073-ibm_5.4.0-1073.78_amd64.deb | Linux |
| Linux kernel (USN-6831-1) linux-image-5.4.0-1093-gkeop_5.4.0-1093.97_amd64.deb | Linux |
| Linux kernel (USN-6831-1) linux-image-5.4.0-1114-kvm_5.4.0-1114.121_amd64.deb | Linux |
| Linux kernel (USN-6831-1) linux-image-5.4.0-1125-oracle_5.4.0-1125.134_amd64.deb | Linux |
| Linux kernel (USN-6831-1) linux-image-5.4.0-1126-aws_5.4.0-1126.136_amd64.deb | Linux |
| Linux kernel (USN-6831-1) linux-image-5.4.0-1130-gcp_5.4.0-1130.139_amd64.deb | Linux |
| Linux kernel (USN-6831-1) linux-image-5.4.0-1131-azure_5.4.0-1131.138_amd64.deb | Linux |
| Linux kernel (USN-6831-1) linux-image-5.4.0-186-generic_5.4.0-186.206_amd64.deb | Linux |
| Linux kernel (USN-6831-1) linux-image-5.4.0-186-lowlatency_5.4.0-186.206_amd64.deb | Linux |
| Linux kernel (USN-6831-1) linux-image-aws-lts-20.04_5.4.0.1126.123_amd64.deb | Linux |
| Linux kernel (USN-6831-1) linux-image-azure-lts-20.04_5.4.0.1131.125_amd64.deb | Linux |
| Linux kernel (USN-6831-1) linux-image-gcp-lts-20.04_5.4.0.1130.132_amd64.deb | Linux |
| Linux kernel (USN-6831-1) linux-image-generic_5.4.0.186.184_amd64.deb | Linux |
| Linux kernel (USN-6831-1) linux-image-gkeop_5.4.0.1093.91_amd64.deb | Linux |
| Linux kernel (USN-6831-1) linux-image-gkeop-5.4_5.4.0.1093.91_amd64.deb | Linux |
| Linux kernel (USN-6831-1) linux-image-ibm-lts-20.04_5.4.0.1073.102_amd64.deb | Linux |
| Linux kernel (USN-6831-1) linux-image-kvm_5.4.0.1114.110_amd64.deb | Linux |
| Linux kernel (USN-6831-1) linux-image-lowlatency_5.4.0.186.184_amd64.deb | Linux |
| Linux kernel (USN-6831-1) linux-image-oem_5.4.0.186.184_amd64.deb | Linux |
| Linux kernel (USN-6831-1) linux-image-oem-osp1_5.4.0.186.184_amd64.deb | Linux |
| Linux kernel (USN-6831-1) linux-image-oracle-lts-20.04_5.4.0.1125.118_amd64.deb | Linux |
| Linux kernel (USN-6831-1) linux-image-virtual_5.4.0.186.184_amd64.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-6821-4) linux-image-5.15.0-1065-azure-fde_5.15.0-1065.74.1_amd64.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-6821-4) linux-image-5.15.0-1066-azure_5.15.0-1066.75_amd64.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-6821-4) linux-image-azure-fde-lts-22.04_5.15.0.1065.74.43_amd64.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-6821-4) linux-image-azure-lts-22.04_5.15.0.1066.64_amd64.deb | Linux |
| Linux kernel for NVIDIA BlueField platforms (USN-6867-1) linux-image-5.4.0-1038-iot_5.4.0-1038.39_amd64.deb | Linux |
| Linux hardware enablement (HWE) kernel (USN-6871-1) linux-image-5.15.0-113-generic_5.15.0-113.123~20.04.1_amd64.deb | Linux |
| Linux hardware enablement (HWE) kernel (USN-6871-1) linux-image-generic-hwe-20.04_5.15.0.113.123~20.04.1_amd64.deb | Linux |
| Linux hardware enablement (HWE) kernel (USN-6871-1) linux-image-oem-20.04_5.15.0.113.123~20.04.1_amd64.deb | Linux |
| Linux hardware enablement (HWE) kernel (USN-6871-1) linux-image-oem-20.04b_5.15.0.113.123~20.04.1_amd64.deb | Linux |
| Linux hardware enablement (HWE) kernel (USN-6871-1) linux-image-oem-20.04c_5.15.0.113.123~20.04.1_amd64.deb | Linux |
| Linux hardware enablement (HWE) kernel (USN-6871-1) linux-image-oem-20.04d_5.15.0.113.123~20.04.1_amd64.deb | Linux |
| Linux hardware enablement (HWE) kernel (USN-6871-1) linux-image-virtual-hwe-20.04_5.15.0.113.123~20.04.1_amd64.deb | Linux |
| Linux kernel for IBM cloud systems (USN-6892-1) linux-image-5.15.0-1057-ibm_5.15.0-1057.60~20.04.1_amd64.deb | Linux |
| Linux kernel for IBM cloud systems (USN-6892-1) linux-image-ibm_5.15.0.1057.60~20.04.1_amd64.deb | Linux |
| SUSE-SU-2024:2571-1(Legacy Module 15-SP6 ) reiserfs-kmp-default-debuginfo-6.4.0-150600.23.14.2.x86_64.rpm | Linux |
| SUSE-SU-2024:2571-1(Legacy Module 15-SP6 ) reiserfs-kmp-default-6.4.0-150600.23.14.2.x86_64.rpm | Linux |
| SUSE-SU-2024:2571-1(Development Tools Module 15-SP6 ) kernel-syms-6.4.0-150600.23.14.2.x86_64.rpm | Linux |
| SUSE-SU-2024:2571-1(Development Tools Module 15-SP6 ) kernel-source-6.4.0-150600.23.14.2.noarch.rpm | Linux |
| SUSE-SU-2024:2571-1(Development Tools Module 15-SP6 ) kernel-obs-build-debugsource-6.4.0-150600.23.14.2.x86_64.rpm | Linux |
| SUSE-SU-2024:2571-1(Development Tools Module 15-SP6 ) kernel-obs-build-6.4.0-150600.23.14.2.x86_64.rpm | Linux |
| SUSE-SU-2024:2571-1(Basesystem Module 15-SP6 ) kernel-macros-6.4.0-150600.23.14.2.noarch.rpm | Linux |
| SUSE-SU-2024:2571-1(Development Tools Module 15-SP6 ) kernel-docs-6.4.0-150600.23.14.2.noarch.rpm | Linux |
| SUSE-SU-2024:2571-1(Basesystem Module 15-SP6 ) kernel-devel-6.4.0-150600.23.14.2.noarch.rpm | Linux |
| SUSE-SU-2024:2571-1(Basesystem Module 15-SP6 ) kernel-default-devel-debuginfo-6.4.0-150600.23.14.2.x86_64.rpm | Linux |
| SUSE-SU-2024:2571-1(Basesystem Module 15-SP6 ) kernel-default-devel-6.4.0-150600.23.14.2.x86_64.rpm | Linux |
| SUSE-SU-2024:2571-1(Basesystem Module 15-SP6 ) kernel-default-debugsource-6.4.0-150600.23.14.2.x86_64.rpm | Linux |
| SUSE-SU-2024:2571-1(Basesystem Module 15-SP6 ) kernel-default-debuginfo-6.4.0-150600.23.14.2.x86_64.rpm | Linux |
| SUSE-SU-2024:2571-1(Basesystem Module 15-SP6 ) kernel-default-base-6.4.0-150600.23.14.2.150600.12.4.3.x86_64.rpm | Linux |
| SUSE-SU-2024:2571-1(Basesystem Module 15-SP6 ) kernel-default-6.4.0-150600.23.14.2.x86_64.rpm | Linux |
| SUSE-SU-2024:2896-1(Public Cloud Module 15-SP6 ) kernel-syms-azure-6.4.0-150600.8.8.1.x86_64.rpm | Linux |
| SUSE-SU-2024:2896-1(Public Cloud Module 15-SP6 ) kernel-source-azure-6.4.0-150600.8.8.2.noarch.rpm | Linux |
| SUSE-SU-2024:2896-1(Public Cloud Module 15-SP6 ) kernel-devel-azure-6.4.0-150600.8.8.2.noarch.rpm | Linux |
| SUSE-SU-2024:2896-1(Public Cloud Module 15-SP6 ) kernel-azure-devel-debuginfo-6.4.0-150600.8.8.2.x86_64.rpm | Linux |
| SUSE-SU-2024:2896-1(Public Cloud Module 15-SP6 ) kernel-azure-devel-6.4.0-150600.8.8.2.x86_64.rpm | Linux |
| SUSE-SU-2024:2896-1(Public Cloud Module 15-SP6 ) kernel-azure-debugsource-6.4.0-150600.8.8.2.x86_64.rpm | Linux |
| SUSE-SU-2024:2896-1(Public Cloud Module 15-SP6 ) kernel-azure-debuginfo-6.4.0-150600.8.8.2.x86_64.rpm | Linux |
| SUSE-SU-2024:2896-1(Public Cloud Module 15-SP6 ) kernel-azure-6.4.0-150600.8.8.2.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update rv-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update rtla-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update python3-perf-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update perf-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-uki-virt-addons-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-uki-virt-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-tools-libs-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-tools-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-modules-extra-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-modules-core-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-modules-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-headers-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-doc-5.14.0-503.11.1.el9_5.noarch.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-devel-matched-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-devel-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-debug-uki-virt-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-debug-modules-extra-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-debug-modules-core-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-debug-modules-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-debug-devel-matched-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-debug-devel-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-debug-core-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-debug-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-core-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-abi-stablelists-5.14.0-503.11.1.el9_5.noarch.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update kernel-5.14.0-503.11.1.el9_5.x86_64.rpm | Linux |
| (RHSA-2024:9315)Moderate: security update bpftool-7.4.0-503.11.1.el9_5.x86_64.rpm | Linux |
| kernel Security Update (ALAS-2024-784) kernel-livepatch-6.1.82-99.168-1.0-0.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS-2024-784) python3-perf-6.1.82-99.168.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS-2024-784) perf-6.1.82-99.168.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS-2024-784) kernel-tools-devel-6.1.82-99.168.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS-2024-784) kernel-tools-6.1.82-99.168.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS-2024-784) kernel-modules-extra-common-6.1.82-99.168.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS-2024-784) kernel-modules-extra-6.1.82-99.168.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS-2024-784) kernel-libbpf-static-6.1.82-99.168.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS-2024-784) kernel-libbpf-devel-6.1.82-99.168.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS-2024-784) kernel-libbpf-6.1.82-99.168.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS-2024-784) kernel-headers-6.1.82-99.168.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS-2024-784) kernel-devel-6.1.82-99.168.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS-2024-784) kernel-6.1.82-99.168.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS-2024-784) bpftool-6.1.82-99.168.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS2023-2024-784) kernel-livepatch-6.1.82-99.168-1.0-0.amzn2023.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234