Access of Uninitialized Pointer in Linux kernel

#VU89396 Access of Uninitialized Pointer in Linux kernel

Published: 2024-05-13

Vulnerability identifier: #VU89396

Vulnerability risk: Medium

CVSSv3.1: 5.2 [CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2024-26641

CWE-ID: CWE-824

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system

Vendor: Linux Foundation

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to access to uninitialized data within the __ip6_tnl_rcv() function in net/ipv6/ip6_tunnel.c. A remote attacker can send specially crafted data to the system and perform a denial of service (DoS) attack.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Linux kernel:

External links
http://git.kernel.org/stable/c/a9bc32879a08f23cdb80a48c738017e39aea1080
http://git.kernel.org/stable/c/af6b5c50d47ab43e5272ad61935d0ed2e264d3f0
http://git.kernel.org/stable/c/d54e4da98bbfa8c257bdca94c49652d81d18a4d8
http://git.kernel.org/stable/c/350a6640fac4b53564ec20aa3f4a0922cb0ba5e6
http://git.kernel.org/stable/c/c835df3bcc14858ae9b27315dd7de76370b94f3a
http://git.kernel.org/stable/c/8d975c15c0cd744000ca386247432d57b21f9df0

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

openEuler 22.03 LTS SP3 update for kernel

openEuler 20.03 LTS SP4 update for kernel

openEuler 20.03 LTS SP1 update for kernel

Denial of service in Linux kernel ip6_tunnel