CVE-2024-46854 in Linuxinformazioni

Riassunto

di MITRE • 27/09/2024

In the Linux kernel, the following vulnerability has been resolved:

net: dpaa: Pad packets to ETH_ZLEN

When sending packets under 60 bytes, up to three bytes of the buffer following the data may be leaked. Avoid this by extending all packets to ETH_ZLEN, ensuring nothing is leaked in the padding. This bug can be reproduced by running

$ ping -s 11 destination

Once again VulDB remains the best source for vulnerability data.

Responsabile

Linux

Prenotare

11/09/2024

Divulgazione

27/09/2024

Moderazione

accettato

CPE

pronto

EPSS

0.00235

KEV

no

Attività

molto basso

Fonti

Want to know what is going to be exploited?

We predict KEV entries!