CVE-2024-42156

CVSS v3 4.1 MEDIUM

4.1^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 0.5 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity HIGH

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

I

n the Linux kernel, the following vulnerability has been resolved: s390/pkey: Wipe copies of clear-key structures on failure Wipe all sensitive data from stack for all IOCTLs, which convert a clear-key into a protected- or secure-key.

References

Link	Resource
https://git.kernel.org/stable/c/7f6243edd901b75aaece326c90a1cc0dcb60cc3d	Patch
https://git.kernel.org/stable/c/a891938947f4427f98cb1ce54f27223501efe750
https://git.kernel.org/stable/c/d65d76a44ffe74c73298ada25b0f578680576073	Patch
https://git.kernel.org/stable/c/7f6243edd901b75aaece326c90a1cc0dcb60cc3d	Patch
https://git.kernel.org/stable/c/d65d76a44ffe74c73298ada25b0f578680576073	Patch

Configurations

Configuration 1 (hide)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

History

09 Dec 2024, 13:10

Type	Values Removed	Values Added
References		() https://git.kernel.org/stable/c/a891938947f4427f98cb1ce54f27223501efe750 -

21 Nov 2024, 09:33

Type	Values Removed	Values Added
References	~~() https://git.kernel.org/stable/c/7f6243edd901b75aaece326c90a1cc0dcb60cc3d - Patch~~	() https://git.kernel.org/stable/c/7f6243edd901b75aaece326c90a1cc0dcb60cc3d - Patch
References	~~() https://git.kernel.org/stable/c/d65d76a44ffe74c73298ada25b0f578680576073 - Patch~~	() https://git.kernel.org/stable/c/d65d76a44ffe74c73298ada25b0f578680576073 - Patch

02 Aug 2024, 14:31

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-07-30 08:15

Updated : 2024-12-09 13:10

NVD link : CVE-2024-42156

Mitre link : CVE-2024-42156

CVE.ORG link : CVE-2024-42156

JSON object : View

Products Affected

linux_kernel

CWE

NVD-CWE-Other

{"id": "CVE-2024-42156", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "[email protected]", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.1, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 0.5}]}, "published": "2024-07-30T08:15:07.080", "references": [{"url": "https://git.kernel.org/stable/c/7f6243edd901b75aaece326c90a1cc0dcb60cc3d", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/a891938947f4427f98cb1ce54f27223501efe750", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/d65d76a44ffe74c73298ada25b0f578680576073", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/7f6243edd901b75aaece326c90a1cc0dcb60cc3d", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://git.kernel.org/stable/c/d65d76a44ffe74c73298ada25b0f578680576073", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "[email protected]", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/pkey: Wipe copies of clear-key structures on failure\n\nWipe all sensitive data from stack for all IOCTLs, which convert a\nclear-key into a protected- or secure-key."}, {"lang": "es", "value": " En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: s390/pkey: borra copias de estructuras de claves claras en caso de fallo. Borra todos los datos confidenciales de la pila para todos los IOCTL, que convierten una clave clara en una clave protegida o segura."}], "lastModified": "2024-12-09T13:10:02.267", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F07A6B96-3EC3-44C6-A31F-BE7A176B3EDF", "versionEndExcluding": "6.9.9", "versionStartIncluding": "4.11"}], "operator": "OR"}]}], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}