CVE-2024-42312

UNKNOWN

Published 2024-08-17T09:09:16.646Z

Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2024-42312. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

In the Linux kernel, the following vulnerability has been resolved:

sysctl: always initialize i_uid/i_gid

Always initialize i_uid/i_gid inside the sysfs core so set_ownership()
can safely skip setting them.

Commit 5ec27ec735ba ("fs/proc/proc_sysctl.c: fix the default values of
i_uid/i_gid on /proc/sys inodes.") added defaults for i_uid/i_gid when
set_ownership() was not implemented. It also missed adjusting
net_ctl_set_ownership() to use the same default values in case the
computation of a better value failed.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Linux

Affected Versions:

5ec27ec735ba0477d48c80561cc5e856f0c5dfaf 5ec27ec735ba0477d48c80561cc5e856f0c5dfaf 5ec27ec735ba0477d48c80561cc5e856f0c5dfaf 5ec27ec735ba0477d48c80561cc5e856f0c5dfaf 5ec27ec735ba0477d48c80561cc5e856f0c5dfaf 5ec27ec735ba0477d48c80561cc5e856f0c5dfaf e83234d7ef237931148b4b17834dadf57eb46c12 2cbf2af144f0cd08a3361c6299b2e6086b7d21d9 2c7b50c7b1d036f71acd9a917a8cb0f9b6e43dab 7eb45a94c279dd5af4cafaa738ae93737517eef4 14cc90952cef94bfa89a6b4a2f55fd9a70f50a16

Linux