CVE Radar Logo
CVERadar
CVE Radar Logo
CVERadar

CVE-2024-35884

Medium Severity
SVRS
30/100
CVSSv3
NA/10
EPSS
0.00725/1

CVE-2024-35884 is a vulnerability in the Linux kernel related to UDP packet handling within tunnels. Specifically, it addresses an issue where Generic Receive Offload (GRO) can improperly process tunneled UDP packets, potentially leading to packet corruption or kernel crashes. The Linux kernel vulnerability stems from improperly handling GSO packets in tunnel scenarios.

The vulnerability occurs when UDP packets, processed with rx-udp-gro-forwarding, are incorrectly GROed before entering a tunnel. This causes issues like incorrect offset adjustments and errors during fragmentation, leading to a variety of problems. The fix involves checks to ensure that GSO packets lacking the SKB_GSO_UDP_TUNNEL or SKB_GSO_CSUM bits are segmented when entering a tunnel. With a SVRS score of 30, the risk is moderate; while not requiring immediate action, it should be addressed in routine patching to prevent potential system instability and data corruption.

TAGS
In The Wild
VECTOR STRING
PUBLICATION DATE2024-05-19
LAST MODIFIED2024-11-13

Indicators of Compromise

No IOCs found for this CVE

Exploits

No exploits found for this CVE

Enhance Your CVE Management with SOCRadar Vulnerability Intelligence
Get comprehensive CVE details, real-time notifications, and proactive threat management all in one platform.
CREATE FREE ACCOUNT
CVE Details
Access comprehensive CVE information instantly
Real-time Tracking
Subscribe to CVEs and get instant updates
Exploit Analysis
Monitor related APT groups and threats
IOC Tracking
Analyze and track CVE-related IOCs

News

USN-6927-1: Linux kernel vulnerabilities
2024-07-30
USN-6927-1: Linux kernel vulnerabilities | Ziming Zhang discovered that the DRM driver for VMware Virtual GPU did not properly handle certain error conditions, leading to a NULL pointer dereference. A local attacker could possibly trigger this vulnerability to cause a denial of service. (CVE-2022-38096) Gui-Dong Han discovered that the software RAID driver in the Linux kernel contained a race condition, leading to an integer overflow vulnerability. A privileged attacker could possibly use this to cause a denial of service (system crash). (CVE-2024-23307) It was discovered that a race condition existed in the Bluetooth subsystem
ubuntu.com
rss
forum
news
USN-6917-1: Linux kernel vulnerabilities
2024-07-26
USN-6917-1: Linux kernel vulnerabilities | Ziming Zhang discovered that the DRM driver for VMware Virtual GPU did not properly handle certain error conditions, leading to a NULL pointer dereference. A local attacker could possibly trigger this vulnerability to cause a denial of service. (CVE-2022-38096) Gui-Dong Han discovered that the software RAID driver in the Linux kernel contained a race condition, leading to an integer overflow vulnerability. A privileged attacker could possibly use this to cause a denial of service (system crash). (CVE-2024-23307) It was discovered that a race condition existed in the Bluetooth subsystem
cve-2024-35900
cve-2024-36004
cve-2024-35884
cve-2024-26999
USN-6918-1: Linux kernel vulnerabilities
2024-07-26
USN-6918-1: Linux kernel vulnerabilities | It was discovered that a race condition existed in the Bluetooth subsystem in the Linux kernel when modifying certain settings values through debugfs. A privileged local attacker could use this to cause a denial of service. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - RISC-V architecture; - S390 architecture; - x86 architecture; - Block layer subsystem; - Compute Acceleration Framework; - Accessibility subsystem; - Android drivers; - Drivers core; - Bluetooth drivers; - Clock framework and drivers; - Data acquisition framework and
cve-2024-26982
cve-2024-26997
cve-2024-35892
cve-2024-27014
USN-6919-1: Linux kernel vulnerabilities
2024-07-26
USN-6919-1: Linux kernel vulnerabilities | Ziming Zhang discovered that the DRM driver for VMware Virtual GPU did not properly handle certain error conditions, leading to a NULL pointer dereference. A local attacker could possibly trigger this vulnerability to cause a denial of service. (CVE-2022-38096) It was discovered that the ATA over Ethernet (AoE) driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An attacker could use this to cause a denial of service or possibly execute arbitrary code. (CVE-2023-6270) It was discovered that the Atheros 802.11ac wireless
cve-2024-26816
cve-2024-26773
cve-2024-27046
cve-2024-27028
USN-6893-3: Linux kernel vulnerabilities
2024-07-23
USN-6893-3: Linux kernel vulnerabilities | It was discovered that a race condition existed in the Bluetooth subsystem in the Linux kernel when modifying certain settings values through debugfs. A privileged local attacker could use this to cause a denial of service. (CVE-2024-24857, CVE-2024-24858, CVE-2024-24859) Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - RISC-V architecture; - S390 architecture; - x86 architecture; - Block layer subsystem; - Compute Acceleration Framework; - Accessibility subsystem; - Android drivers; - Drivers core; - Bluetooth
ubuntu.com
rss
forum
news
USN-6898-4: Linux kernel vulnerabilities
2024-07-23
USN-6898-4: Linux kernel vulnerabilities | Ziming Zhang discovered that the DRM driver for VMware Virtual GPU did not properly handle certain error conditions, leading to a NULL pointer dereference. A local attacker could possibly trigger this vulnerability to cause a denial of service. (CVE-2022-38096) Gui-Dong Han discovered that the software RAID driver in the Linux kernel contained a race condition, leading to an integer overflow vulnerability. A privileged attacker could possibly use this to cause a denial of service (system crash). (CVE-2024-23307) It was discovered that a race condition existed in the Bluetooth subsystem
cve-2024-36006
cve-2024-35809
cve-2024-27396
cve-2024-26960
USN-6898-3: Linux kernel kernel vulnerabilities
2024-07-19
USN-6898-3: Linux kernel kernel vulnerabilities | Ziming Zhang discovered that the DRM driver for VMware Virtual GPU did not properly handle certain error conditions, leading to a NULL pointer dereference. A local attacker could possibly trigger this vulnerability to cause a denial of service. (CVE-2022-38096) Gui-Dong Han discovered that the software RAID driver in the Linux kernel contained a race condition, leading to an integer overflow vulnerability. A privileged attacker could possibly use this to cause a denial of service (system crash). (CVE-2024-23307) It was discovered that a race condition existed in the Bluetooth
ubuntu.com
rss
forum
news

Social Media

There is a new vulnerability with elevated criticality in Linux Kernel (CVE-2024-35884) https://t.co/iVnrH4tU9D
0
0
1

Affected Software

No affected software found for this CVE

References

ReferenceLink
416BAAA9-DC9F-4396-8D5F-8C081FB06D67https://git.kernel.org/stable/c/3001e7aa43d6691db2a878b0745b854bf12ddd19
416BAAA9-DC9F-4396-8D5F-8C081FB06D67https://git.kernel.org/stable/c/3391b157780bbedf8ef9f202cbf10ee90bf6b0f8
416BAAA9-DC9F-4396-8D5F-8C081FB06D67https://git.kernel.org/stable/c/35fe0e0b5c00bef7dde74842a2564c43856fbce4
416BAAA9-DC9F-4396-8D5F-8C081FB06D67https://git.kernel.org/stable/c/3d010c8031e39f5fa1e8b13ada77e0321091011f
416BAAA9-DC9F-4396-8D5F-8C081FB06D67https://git.kernel.org/stable/c/d12245080cb259d82b34699f6cd4ec11bdb688bd
416BAAA9-DC9F-4396-8D5F-8C081FB06D67https://git.kernel.org/stable/c/d49ae15a5767d4e9ef8bbb79e42df1bfebc94670
416BAAA9-DC9F-4396-8D5F-8C081FB06D67https://git.kernel.org/stable/c/3001e7aa43d6691db2a878b0745b854bf12ddd19
416BAAA9-DC9F-4396-8D5F-8C081FB06D67https://git.kernel.org/stable/c/3391b157780bbedf8ef9f202cbf10ee90bf6b0f8
416BAAA9-DC9F-4396-8D5F-8C081FB06D67https://git.kernel.org/stable/c/35fe0e0b5c00bef7dde74842a2564c43856fbce4
416BAAA9-DC9F-4396-8D5F-8C081FB06D67https://git.kernel.org/stable/c/3d010c8031e39f5fa1e8b13ada77e0321091011f
416BAAA9-DC9F-4396-8D5F-8C081FB06D67https://git.kernel.org/stable/c/d12245080cb259d82b34699f6cd4ec11bdb688bd
416BAAA9-DC9F-4396-8D5F-8C081FB06D67https://git.kernel.org/stable/c/d49ae15a5767d4e9ef8bbb79e42df1bfebc94670
416BAAA9-DC9F-4396-8D5F-8C081FB06D67https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html

CWE Details

No CWE details found for this CVE

CVE Radar

Real-time CVE Intelligence & Vulnerability Management Platform

CVE Radar provides comprehensive vulnerability intelligence by monitoring CVE databases, security advisories, and threat feeds. Get instant updates on new vulnerabilities, exploit details, and mitigation strategies specific to your assets.

Get Free Vulnerability Intelligence AccessAccess real-time CVE monitoring, exploit analysis, and threat intelligence