4Nis
CVE-2024-26805 | Linux Kernel up to 6.7.8 lib/iov_iter.c netlink_to_full_skb uninitialized pointer
A vulnerability, which was classified as problematic, was found in Linux Kernel up to 6.7.8. Affected is the functionnetlink_to_full_skb
in the library lib/iov_iter.c. The manipulation leads to uninitialized pointer.
This vulnerability is traded as CVE-2024-26805. Access to the local network is required for this attack to succeed. There is no exploit available.
It is recommended to upgrade the affected component.