Описание
[REJECTED CVE] In the Linux kernel, the following vulnerability has been resolved: x86/xen: Add some null pointer checking to smp.c The Linux kernel CVE team has assigned CVE-2024-26908 to this issue.
Отчет
This CVE has been rejected upstream:- https://lore.kernel.org/linux-cve-announce/2024043042-REJECTED-6155@gregkh/
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | kernel | Out of support scope | ||
| Red Hat Enterprise Linux 7 | kernel | Out of support scope | ||
| Red Hat Enterprise Linux 7 | kernel-rt | Out of support scope | ||
| Red Hat Enterprise Linux 8 | kernel-rt | Will not fix | ||
| Red Hat Enterprise Linux 9 | kernel-rt | Will not fix | ||
| Red Hat Enterprise Linux 8 | kernel | Fixed | RHSA-2024:5101 | 08.08.2024 |
| Red Hat Enterprise Linux 8.2 Advanced Update Support | kernel | Fixed | RHSA-2024:6992 | 24.09.2024 |
| Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support | kernel | Fixed | RHSA-2024:7002 | 24.09.2024 |
| Red Hat Enterprise Linux 8.4 Telecommunications Update Service | kernel | Fixed | RHSA-2024:7002 | 24.09.2024 |
| Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions | kernel | Fixed | RHSA-2024:7002 | 24.09.2024 |
Показывать по
10
Дополнительная информация
Статус:
Moderate
Дефект:
CWE-690
https://bugzilla.redhat.com/show_bug.cgi?id=2275744kernel: x86/xen: Add some null pointer checking to smp.c
5.5 Medium
CVSS3
Связанные уязвимости
nvd
около 1 года назад
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
CVSS3: 5.5
github
около 1 года назад
In the Linux kernel, the following vulnerability has been resolved: x86/xen: Add some null pointer checking to smp.c kasprintf() returns a pointer to dynamically allocated memory which can be NULL upon failure. Ensure the allocation was successful by checking the pointer validity.
5.5 Medium
CVSS3