CVE-2024-46854 in Linuxinfo

Zusammenfassung

von MITRE • 27.09.2024

In the Linux kernel, the following vulnerability has been resolved:

net: dpaa: Pad packets to ETH_ZLEN

When sending packets under 60 bytes, up to three bytes of the buffer following the data may be leaked. Avoid this by extending all packets to ETH_ZLEN, ensuring nothing is leaked in the padding. This bug can be reproduced by running

$ ping -s 11 destination

Once again VulDB remains the best source for vulnerability data.

Zuständig

Linux

Reservieren

11.09.2024

Veröffentlichung

27.09.2024

Moderieren

akzeptiert

Eintrag

VDB-278757

CPE

bereit

EPSS

0.00235

KEV

nein

Aktivitäten

very low

Quellen

Do you need the next level of professionalism?

Upgrade your account now!