Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog Latest Updates Security News
Sign In Sign Up

CVE-2024-35831

UNKNOWN
Published 2024-05-17T13:41:23.171Z
Actions:
No CVSS data available

Description

In the Linux kernel, the following vulnerability has been resolved:

io_uring: Fix release of pinned pages when __io_uaddr_map fails

Looking at the error path of __io_uaddr_map, if we fail after pinning
the pages for any reasons, ret will be set to -EINVAL and the error
handler won't properly release the pinned pages.

I didn't manage to trigger it without forcing a failure, but it can
happen in real life when memory is heavily fragmented.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Linux

Linux

Affected Versions:

223ef474316466e9f61f6e0064f3a6fe4923a2c5 223ef474316466e9f61f6e0064f3a6fe4923a2c5 223ef474316466e9f61f6e0064f3a6fe4923a2c5 223ef474316466e9f61f6e0064f3a6fe4923a2c5 3f3164ce6396138747984ee9e61158e248246300
Linux

Linux

Affected Versions:

6.6 0 6.6.23 6.7.11 6.8.2 6.9

References

https://git.kernel.org/stable/c/0b6f39c175ba5f0ef72bdb3b9d2a06ad78621d62
https://git.kernel.org/stable/c/712e2c8415f55a4a4ddaa98a430b87f624109f69
https://git.kernel.org/stable/c/4d376d7ad62b6a8e8dfff56b559d9d275e5b9b3a
https://git.kernel.org/stable/c/67d1189d1095d471ed7fa426c7e384a7140a5dd7
Published: 2024-05-17T13:41:23.171Z
Last Modified: 2025-05-04T12:55:53.115Z
Copied to clipboard!