What is the severity of CVE-2024-36935?

CVE-2024-36935 is considered to have a significant impact due to potential memory corruption leading to security vulnerabilities.

How do I fix CVE-2024-36935?

To resolve CVE-2024-36935, upgrade your Linux kernel to versions 5.10.223-1, 5.10.226-1, 6.1.119-1, 6.1.123-1, 6.12.11-1, or 6.12.12-1.

Which Linux kernel versions are affected by CVE-2024-36935?

CVE-2024-36935 affects Linux kernel versions between 6.8 and 6.9-rc6.

What should I do if I am running an affected version of the Linux kernel related to CVE-2024-36935?

If you are running an affected version of the Linux kernel, it is critical to apply the relevant security patches or upgrade to a secure version immediately.

Is there a workaround for CVE-2024-36935 while waiting for a patch?

Currently, there are no recommended workarounds for CVE-2024-36935 other than upgrading the kernel to a secure version.

Vulnerability/
CVE-2024-36935

high

7.1

CWE

125

EPSS

0.043%

30/5/2024

15/1/2025

CVE-2024-36935: ice: ensure the copied buf is NUL terminated

First published: Thu May 30 2024(Updated: )

In the Linux kernel, the following vulnerability has been resolved: ice: ensure the copied buf is NUL terminated Currently, we allocate a count-sized kernel buffer and copy count bytes from userspace to that buffer. Later, we use sscanf on this buffer but we don't ensure that the string is terminated inside the buffer, this can lead to OOB read when using sscanf. Fix this issue by using memdup_user_nul instead of memdup_user.

Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Affected Software	Affected Version	How to fix
Linux Kernel	>=6.8<6.8.10
Linux Kernel	=6.9-rc1
Linux Kernel	=6.9-rc2
Linux Kernel	=6.9-rc3
Linux Kernel	=6.9-rc4
Linux Kernel	=6.9-rc5
Linux Kernel	=6.9-rc6
debian/linux		5.10.223-1 5.10.226-1 6.1.123-1 6.1.119-1 6.12.11-1 6.12.12-1

Remedy

https://git.kernel.org/stable/c/5ff4de981983ed84f29b5d92b6550ec054e12a92

Remedy

https://git.kernel.org/stable/c/666854ea9cad844f75a068f32812a2d78004914a

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2024-36935?
CVE-2024-36935 is considered to have a significant impact due to potential memory corruption leading to security vulnerabilities.
How do I fix CVE-2024-36935?
To resolve CVE-2024-36935, upgrade your Linux kernel to versions 5.10.223-1, 5.10.226-1, 6.1.119-1, 6.1.123-1, 6.12.11-1, or 6.12.12-1.
Which Linux kernel versions are affected by CVE-2024-36935?
CVE-2024-36935 affects Linux kernel versions between 6.8 and 6.9-rc6.
What should I do if I am running an affected version of the Linux kernel related to CVE-2024-36935?
If you are running an affected version of the Linux kernel, it is critical to apply the relevant security patches or upgrade to a secure version immediately.
Is there a workaround for CVE-2024-36935 while waiting for a patch?
Currently, there are no recommended workarounds for CVE-2024-36935 other than upgrading the kernel to a secure version.

agent/title
agent/type
collector/epss-latest
source/FIRST
agent/epss
collector/launchpad-cve
source/Launchpad
agent/first-publish-date
agent/author
agent/references
collector/mitre-cve
source/MITRE
agent/trending
agent/remedy
agent/weakness
agent/severity
agent/last-modified-date
agent/source
collector/usn-cve
source/Ubuntu
agent/tags
agent/description
agent/event
collector/security-tracker-debian
source/Debian
agent/software-canonical-lookup
agent/softwarecombine
collector/nvd-cve
source/NVD
agent/software-canonical-lookup-request
collector/nvd-api
package-manager/debian
vendor/linux
canonical/linux kernel
version/linux kernel/6.8
version/linux kernel/6.9-rc1
version/linux kernel/6.9-rc2
version/linux kernel/6.9-rc3
version/linux kernel/6.9-rc4
version/linux kernel/6.9-rc5
version/linux kernel/6.9-rc6

Frequently Asked Questions

What is the severity of CVE-2024-36935?
CVE-2024-36935 is considered to have a significant impact due to potential memory corruption leading to security vulnerabilities.
How do I fix CVE-2024-36935?
To resolve CVE-2024-36935, upgrade your Linux kernel to versions 5.10.223-1, 5.10.226-1, 6.1.119-1, 6.1.123-1, 6.12.11-1, or 6.12.12-1.
Which Linux kernel versions are affected by CVE-2024-36935?
CVE-2024-36935 affects Linux kernel versions between 6.8 and 6.9-rc6.
What should I do if I am running an affected version of the Linux kernel related to CVE-2024-36935?
If you are running an affected version of the Linux kernel, it is critical to apply the relevant security patches or upgrade to a secure version immediately.
Is there a workaround for CVE-2024-36935 while waiting for a patch?
Currently, there are no recommended workarounds for CVE-2024-36935 other than upgrading the kernel to a secure version.

CVE-2024-36935: ice: ensure the copied buf is NUL terminated

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2024-36935?

How do I fix CVE-2024-36935?

Which Linux kernel versions are affected by CVE-2024-36935?

What should I do if I am running an affected version of the Linux kernel related to CVE-2024-36935?

Is there a workaround for CVE-2024-36935 while waiting for a patch?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2024-36935?

How do I fix CVE-2024-36935?

Which Linux kernel versions are affected by CVE-2024-36935?

What should I do if I am running an affected version of the Linux kernel related to CVE-2024-36935?

Is there a workaround for CVE-2024-36935 while waiting for a patch?