Back to search
CVE-2024-36903
Published: May 30, 2024
Modified: May 23, 2026
PUBLISHED
Description
In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix potential uninit-value access in __ip6_make_skb() As it was done in commit fc1092f51567 ("ipv4: Fix uninit-value access in __ip_make_skb()") for IPv4, check FLOWI_FLAG_KNOWN_NH on fl6->flowi6_flags instead of testing HDRINCL on the socket to avoid a race condition which causes uninit-value access.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 605b056d63302ae84eb136e88d4df49124bd5e0d - < 59d74c843ebf46264c7903726cf6f2673a93b07aaffected d65ff2fe877c471aa6e79efa7bd8ff66e147c317 - < 40e5444a3ac315b60e94d82226b73cd82145d09eaffected 2c9cefc142c1dc2759e19a92d3b2b3715e985beb - < a05c1ede50e9656f0752e523c7b54f3a3489e9a8affected ea30388baebcce37fd594d425a65037ca35e59e8 - < 68c8ba16ab712eb709c6bab80ff151079d11d97aaffected ea30388baebcce37fd594d425a65037ca35e59e8 - < 2367bf254f3a27ecc6e229afd7a8b0a1395f7be3+12 more versions |
Linux | Linux | affected 6.3unaffected 0 - < 6.3unaffected 5.10.248 - <= 5.10.*unaffected 5.15.198 - <= 5.15.*unaffected 6.1.140 - <= 6.1.*+3 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now