CVE-2024-36974
Published: Jun 18, 2024
Modified: May 12, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: net/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP If one TCA_TAPRIO_ATTR_PRIOMAP attribute has been provided, taprio_parse_mqprio_opt() must validate it, or userspace can inject arbitrary data to the kernel, the second time taprio_change() is called. First call (with valid attributes) sets dev->num_tc to a non zero value. Second call (with arbitrary mqprio attributes) returns early from taprio_parse_mqprio_opt() and bad things can happen.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected a3d43c0d56f1b94e74963a2fbadfb70126d92213 - < c6041e7124464ce7e896ee3f912897ce88a0c4ecaffected a3d43c0d56f1b94e74963a2fbadfb70126d92213 - < 6db4af09987cc5d5f0136bd46148b0e0460dae5baffected a3d43c0d56f1b94e74963a2fbadfb70126d92213 - < d3dde4c217f0c31ab0621912e682b57e677dd923affected a3d43c0d56f1b94e74963a2fbadfb70126d92213 - < 0bf6cc96612bd396048f57d63f1ad454a846e39caffected a3d43c0d56f1b94e74963a2fbadfb70126d92213 - < 724050ae4b76e4fae05a923cb54101d792cf4404+2 more versions |
Linux | Linux | affected 5.2unaffected 0 - < 5.2unaffected 5.4.279 - <= 5.4.*unaffected 5.10.221 - <= 5.10.*unaffected 5.15.162 - <= 5.15.*+4 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now