CVE-2024-36017: rtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation

Published May 30, 2024
·
Updated

In the Linux kernel, the following vulnerability has been resolved:

rtnetlink: Correct nested IFLAVFVLANLIST attribute validation

Each attribute inside a nested IFLAVFVLANLIST is assumed to be a struct iflavfvlaninfo so the size of such attribute needs to be at least of sizeof(struct iflavfvlaninfo) which is 14 bytes. The current size validation in dosetvfinfo is against NLAHDRLEN (4 bytes) which is less than sizeof(struct iflavfvlaninfo) so this validation is not enough and a too small attribute might be cast to a struct iflavfvlaninfo, this might result in an out of bands read access when accessing the saved (casted) entry in ivvl.

Other sources

In the Linux kernel, the following vulnerability has been resolved:

rtnetlink: Correct nested IFLAVFVLANLIST attribute validation

The Linux kernel CVE team has assigned CVE-2024-36017 to this issue.

Upstream advisory: https://lore.kernel.org/linux-cve-announce/2024053015-CVE-2024-36017-bf96@gregkh/T

Red Hat

Linux Kernel is vulnerable to a denial of service, caused by an out-of-bounds read when accessing the saved (casted) entry in ivvl. A local authenticated attacker could exploit this vulnerability to cause a denial of service.

IBM

Affected Software

28 affected componentsFixes available
IBM Security Verify Governance<=ISVG 10.0.2
IBM Security Verify Governance, Identity Manager Software Stack<=ISVG 10.0.2
IBM Security Verify Governance, Identity Manager Virtual Appliance<=ISVG 10.0.2
IBM Security Verify Governance Identity Manager Container<=ISVG 10.0.2
debian/linux
5.10.223-15.10.234-16.1.129-16.1.135-16.12.22-16.12.25-1
redhat/kernel<4.19.314
4.19.314
redhat/kernel<5.4.276
5.4.276
redhat/kernel<5.10.217
5.10.217
redhat/kernel<5.15.159
5.15.159
redhat/kernel<6.1.91
6.1.91
redhat/kernel<6.6.31
6.6.31
redhat/kernel<6.8.10
6.8.10
redhat/kernel<6.9
6.9
Linux Linux kernel>=4.9<4.19.314
Linux Linux kernel>=4.20<5.4.276
Linux Linux kernel>=5.5<5.10.217
Linux Linux kernel>=5.11<5.15.159
Linux Linux kernel>=5.16<6.1.91
Linux Linux kernel>=6.2<6.6.31
Linux Linux kernel>=6.7<6.8.10
Linux Linux kernel=6.9-rc1
Linux Linux kernel=6.9-rc2
Linux Linux kernel=6.9-rc3
Linux Linux kernel=6.9-rc4
Linux Linux kernel=6.9-rc5
Linux Linux kernel=6.9-rc6
Linux Linux kernel=6.9-rc7
Debian Debian Linux=10.0

Remediation

Patch Available

https://git.kernel.org/stable/c/1aec77b2bb2ed1db0f5efc61c4c1ca3813307489

Patch Available

https://git.kernel.org/stable/c/206003c748b88890a910ef7142d18f77be57550b

Patch Available

https://git.kernel.org/stable/c/4a4b9757789a1551d2df130df23bfb3545bfa7e8

Patch Available

https://git.kernel.org/stable/c/5e7ef2d88666a0212db8c38e6703864b9ce70169

Patch Available

https://git.kernel.org/stable/c/6c8f44b02500c7d14b5e6618fe4ef9a0da47b3de

Patch Available

https://git.kernel.org/stable/c/6e4c7193954f4faab92f6e8d88bc5565317b44e7

Patch Available

https://git.kernel.org/stable/c/8ac69ff2d0d5be9734c4402de932aa3dc8549c1a

Patch Available

https://git.kernel.org/stable/c/f3c1bf3054f96ddeab0621d920445bada769b40e

Event History

May 30, 2024
CVE Published
via MITRE·12:52 PM
Data Sourced
via MITRE·12:52 PM
Description
Data Sourced
via NVD·01:15 PM
Description
Data Sourced
via NVD·01:15 PM
RemedySeverityAffected Software
Jun 3, 2024
Data Sourced
via Red Hat·08:44 AM
DescriptionSeverityAffected Software
Aug 8, 2024
Data Sourced
via Launchpad·11:25 PM
Description
May 5, 2025
Data Sourced
via Ubuntu·12:27 AM
RemedyDescriptionSeverityAffected Software

Parent advisories

This vulnerability appears in the following advisories.

Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Frequently Asked Questions

1

What is the severity of CVE-2024-36017?

The severity of CVE-2024-36017 is classified as high due to its impact on Linux kernel security.

2

How do I fix CVE-2024-36017?

To fix CVE-2024-36017, upgrade to the kernel versions 4.19.314, 5.4.276, 5.10.217, 5.15.159, 6.1.91, 6.6.31, 6.8.10, or 6.9, or the specified Debian versions.

3

What platforms are affected by CVE-2024-36017?

CVE-2024-36017 affects various versions of the Linux kernel on both Red Hat and Debian platforms.

4

What is the nature of the vulnerability CVE-2024-36017?

CVE-2024-36017 is a vulnerability in the Linux kernel related to improper validation of nested IFLA_VF_VLAN_LIST attribute.

5

Are there any workarounds for CVE-2024-36017?

There are no specific workarounds for CVE-2024-36017; applying the recommended kernel updates is the best mitigation.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203