Detections
Analytics

CVE-2024-27025

medium

Description

In the Linux kernel, the following vulnerability has been resolved: nbd: null check for nla_nest_start nla_nest_start() may fail and return NULL. Insert a check and set errno based on other call sites within the same source code.

References

https://git.kernel.org/stable/c/e803040b368d046434fbc8a91945c690332c4fcf

https://git.kernel.org/stable/c/ba6a9970ce9e284cbc04099361c58731e308596a

https://git.kernel.org/stable/c/b7f5aed55829f376e4f7e5ea5b80ccdcb023e983

https://git.kernel.org/stable/c/98e60b538e66c90b9a856828c71d4e975ebfa797

https://git.kernel.org/stable/c/96436365e5d80d0106ea785a4f80a58e7c9edff8

https://git.kernel.org/stable/c/4af837db0fd3679fabc7b7758397090b0c06dced

https://git.kernel.org/stable/c/44214d744be32a4769faebba764510888f1eb19e

https://git.kernel.org/stable/c/31edf4bbe0ba27fd03ac7d87eb2ee3d2a231af6d

Details

Source: Mitre, NVD

Published: 2024-05-01

Updated: 2024-11-05

Risk Information

CVSS v2

Base Score: 5.7

Vector: CVSS2#AV:L/AC:L/Au:S/C:P/I:P/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium