一、 漏洞 CVE-2024-45016 基础信息
漏洞标题
netem:修复重复入队失败时的返回值
来源:AIGC 神龙大模型
漏洞描述信息
N/A
来源:AIGC 神龙大模型
CVSS信息
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
来源:AIGC 神龙大模型
漏洞类别
释放后使用
来源:AIGC 神龙大模型
漏洞标题
netem: fix return value if duplicate enqueue fails
来源:美国国家漏洞数据库 NVD
漏洞描述信息
In the Linux kernel, the following vulnerability has been resolved: netem: fix return value if duplicate enqueue fails There is a bug in netem_enqueue() introduced by commit 5845f706388a ("net: netem: fix skb length BUG_ON in __skb_to_sgvec") that can lead to a use-after-free. This commit made netem_enqueue() always return NET_XMIT_SUCCESS when a packet is duplicated, which can cause the parent qdisc's q.qlen to be mistakenly incremented. When this happens qlen_notify() may be skipped on the parent during destruction, leaving a dangling pointer for some classful qdiscs like DRR. There are two ways for the bug happen: - If the duplicated packet is dropped by rootq->enqueue() and then the original packet is also dropped. - If rootq->enqueue() sends the duplicated packet to a different qdisc and the original packet is dropped. In both cases NET_XMIT_SUCCESS is returned even though no packets are enqueued at the netem qdisc. The fix is to defer the enqueue of the duplicate packet until after the original packet has been guaranteed to return NET_XMIT_SUCCESS.
来源:美国国家漏洞数据库 NVD
CVSS信息
N/A
来源:美国国家漏洞数据库 NVD
漏洞类别
N/A
来源:美国国家漏洞数据库 NVD
漏洞标题
Linux kernel 安全漏洞
来源:中国国家信息安全漏洞库 CNNVD
漏洞描述信息
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞,该漏洞源于netem组件存在重复入队失败返回值问题。
来源:中国国家信息安全漏洞库 CNNVD
CVSS信息
N/A
来源:中国国家信息安全漏洞库 CNNVD
漏洞类别
其他
来源:中国国家信息安全漏洞库 CNNVD
二、漏洞 CVE-2024-45016 的公开POC
# POC 描述 源链接 神龙链接
三、漏洞 CVE-2024-45016 的情报信息

  • 标题: netem: fix return value if duplicate enqueue fails - kernel/git/stable/linux.git - Linux kernel stable tree -- 🔗来源链接

    标签:

    神龙速读
    netem: fix return value if duplicate enqueue fails - kernel/git/stable/linux.git - Linux kernel stable tree

  • 标题: netem: fix return value if duplicate enqueue fails - kernel/git/stable/linux.git - Linux kernel stable tree -- 🔗来源链接

    标签:

    神龙速读
    netem: fix return value if duplicate enqueue fails - kernel/git/stable/linux.git - Linux kernel stable tree

  • 标题: netem: fix return value if duplicate enqueue fails - kernel/git/stable/linux.git - Linux kernel stable tree -- 🔗来源链接

    标签:

    神龙速读
    netem: fix return value if duplicate enqueue fails - kernel/git/stable/linux.git - Linux kernel stable tree

  • 标题: netem: fix return value if duplicate enqueue fails - kernel/git/stable/linux.git - Linux kernel stable tree -- 🔗来源链接

    标签:

    神龙速读
    netem: fix return value if duplicate enqueue fails - kernel/git/stable/linux.git - Linux kernel stable tree

  • 标题: netem: fix return value if duplicate enqueue fails - kernel/git/stable/linux.git - Linux kernel stable tree -- 🔗来源链接

    标签:

    神龙速读
    netem: fix return value if duplicate enqueue fails - kernel/git/stable/linux.git - Linux kernel stable tree

  • 标题: netem: fix return value if duplicate enqueue fails - kernel/git/stable/linux.git - Linux kernel stable tree -- 🔗来源链接

    标签:

    神龙速读
    netem: fix return value if duplicate enqueue fails - kernel/git/stable/linux.git - Linux kernel stable tree

  • 标题: netem: fix return value if duplicate enqueue fails - kernel/git/stable/linux.git - Linux kernel stable tree -- 🔗来源链接

    标签:

    神龙速读
    netem: fix return value if duplicate enqueue fails - kernel/git/stable/linux.git - Linux kernel stable tree
  • https://nvd.nist.gov/vuln/detail/CVE-2024-45016