QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2024-36031

Back to search

CVE-2024-36031

Published: May 30, 2024

Modified: May 23, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: keys: Fix overwrite of key expiration on instantiation The expiry time of a key is unconditionally overwritten during instantiation, defaulting to turn it permanent. This causes a problem for DNS resolution as the expiration set by user-space is overwritten to TIME64_MAX, disabling further DNS updates. Fix this by restoring the condition that key_set_expiry is only called when the pre-parser sets a specific expiry.

VendorProductVersions

Linux

Linux

affected
97be1e865e70e5a0ad0a5b5f5dca5031ca0b53ac - < ad2011ea787928b2accb5134f1e423b11fe80a8a
affected
2552b32b0b349df160a509fe49f5f308cb922f2b - < ed79b93f725cd0da39a265dc23d77add1527b9be
affected
791d5409cdb974c31a1bc7a903ea729ddc7d83df - < e4519a016650e952ad9eb27937f8c447d5a4e06d
affected
afc360e8a1256acb7579a6f5b6f2c30b85b39301 - < 25777f3f4e1f371d16a594925f31e37ce07b6ec7
affected
39299bdd2546688d92ed9db4948f6219ca1b9542 - < 939a08bcd4334bad4b201e60bd0ae1f278d71d41

+6 more versions

Linux

Linux

affected
6.7
unaffected
0 - < 6.7
unaffected
5.10.217 - <= 5.10.*
unaffected
5.15.159 - <= 5.15.*
unaffected
6.1.91 - <= 6.1.*

+4 more versions

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now