• caglararli@hotmail.com
  • 05386281520

CVE-2024-26805 | Linux Kernel up to 6.7.8 lib/iov_iter.c netlink_to_full_skb uninitialized pointer

Çağlar Arlı      -    6 Views

CVE-2024-26805 | Linux Kernel up to 6.7.8 lib/iov_iter.c netlink_to_full_skb uninitialized pointer

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 6.7.8. Affected is the function netlink_to_full_skb in the library lib/iov_iter.c. The manipulation leads to uninitialized pointer. This vulnerability is traded as CVE-2024-26805. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.