CVE-2024-35947: dyndbg: fix old BUG_ON in >control parser
In the Linux kernel, the following vulnerability has been resolved:
dyndbg: fix old BUGON in >control parser
Fix a BUGON from 2009. Even if it looks "unreachable" (I didn't really look), lets make sure by removing it, doing prerr and return -EINVAL instead.
Other sources
In the Linux kernel, the following vulnerability has been resolved:
dyndbg: fix old BUGON in >control parser
The Linux kernel CVE team has assigned CVE-2024-35947 to this issue.
Upstream advisory: https://lore.kernel.org/linux-cve-announce/2024051952-CVE-2024-35947-09bb@gregkh/T
— Red Hat
Affected Software
Remediation
Event History
Frequently Asked Questions
What is the severity of CVE-2024-35947?
CVE-2024-35947 has a moderate severity rating.
How do I fix CVE-2024-35947?
To mitigate CVE-2024-35947, update your kernel to versions 4.19.314, 5.4.276, 5.10.217, 5.15.159, 6.1.91, 6.6.31, 6.8.10, or 6.9, or to the latest patches if available.
Which Linux kernel versions are affected by CVE-2024-35947?
CVE-2024-35947 affects multiple kernel versions, specifically those below 4.19.314, 5.4.276, 5.10.217, 5.15.159, 6.1.91, 6.6.31, 6.8.10, and 6.9.
Is CVE-2024-35947 specific to certain Linux distributions?
Yes, CVE-2024-35947 impacts multiple distributions including Red Hat and Debian.
What causes CVE-2024-35947 in the Linux kernel?
CVE-2024-35947 is caused by an issue related to the dyndbg control parser that has been resolved in recent kernel updates.