CVE-2024-36964
Last modified
CVE-2024-36964 is a medium-severity vulnerability rated 5.5/10 on the CVSS scale. In the Linux kernel, the following vulnerability has been resolved: fs/9p: only translate RWX permissions for plain 9P2000 Garbage in plain 9P2000's perm bits is allowed through, which causes it to be able to set (among others) the suid bit. This was presumably not the intent since the unix extended bits are handled explicitly and conditionally on .u.. EPSS estimates a 0.22% chance of exploitation in the next 30 days.
Description
In the Linux kernel, the following vulnerability has been resolved: fs/9p: only translate RWX permissions for plain 9P2000 Garbage in plain 9P2000's perm bits is allowed through, which causes it to be able to set (among others) the suid bit. This was presumably not the intent since the unix extended bits are handled explicitly and conditionally on .u.
Metrics
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Linux | Linux Kernel | < 4.19.314 | — |
| Linux | Linux Kernel | >= 4.20, < 5.4.276 | — |
| Linux | Linux Kernel | >= 5.5, < 5.10.217 | — |
| Linux | Linux Kernel | >= 5.11, < 5.15.159 | — |
| Linux | Linux Kernel | >= 5.16, < 6.1.91 | — |
| Linux | Linux Kernel | >= 6.2, < 6.6.31 | — |
| Linux | Linux Kernel | >= 6.7, < 6.8.10 | — |
| Linux | Linux Kernel | 6.9 | Rc1 |
| Debian | Debian Linux | 10.0 | — |
References
- https://lists.debian.org/debian-lts-announce/2024/06/msg00020.htmlMailing List, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Analyzed
Frequently Asked Questions
What is CVE-2024-36964?
How severe is CVE-2024-36964?
How do I fix CVE-2024-36964?
Are you affected by CVE-2024-36964?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST