CVE-2024-26665
Published: Apr 2, 2024
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: tunnels: fix out of bounds access when building IPv6 PMTU error If the ICMPv6 error is built from a non-linear skb we get the following splat, BUG: KASAN: slab-out-of-bounds in do_csum+0x220/0x240 Read of size 4 at addr ffff88811d402c80 by task netperf/820 CPU: 0 PID: 820 Comm: netperf Not tainted 6.8.0-rc1+ #543 ... kasan_report+0xd8/0x110 do_csum+0x220/0x240 csum_partial+0xc/0x20 skb_tunnel_check_pmtu+0xeb9/0x3280 vxlan_xmit_one+0x14c2/0x4080 vxlan_xmit+0xf61/0x5c00 dev_hard_start_xmit+0xfb/0x510 __dev_queue_xmit+0x7cd/0x32a0 br_dev_queue_push_xmit+0x39d/0x6a0 Use skb_checksum instead of csum_partial who cannot deal with non-linear SKBs.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 4cb47a8644cc9eb8ec81190a50e79e6530d0297f - < e77bf828f1ca1c47fcff58bdc26b60a9d3dfbe1daffected 4cb47a8644cc9eb8ec81190a50e79e6530d0297f - < d964dd1bc1452594b4207d9229c157d9386e5d8aaffected 4cb47a8644cc9eb8ec81190a50e79e6530d0297f - < e37cde7a5716466ff2a76f7f27f0a29b05b9a732affected 4cb47a8644cc9eb8ec81190a50e79e6530d0297f - < 510c869ffa4068c5f19ff4df51d1e2f3a30aaac1affected 4cb47a8644cc9eb8ec81190a50e79e6530d0297f - < 7dc9feb8b1705cf00de20563b6bc4831f4c99dab+1 more versions |
Linux | Linux | affected 5.9unaffected 0 - < 5.9unaffected 5.10.210 - <= 5.10.*unaffected 5.15.149 - <= 5.15.*unaffected 6.1.78 - <= 6.1.*+3 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now