Rapid7 Vulnerability & Exploit Database

Rocky Linux: CVE-2024-36489: kernel (Multiple Advisories)

Free InsightVM Trial No Credit Card Necessary
2024 Attack Intel Report Latest research by Rapid7 Labs
Back to Search

Rocky Linux: CVE-2024-36489: kernel (Multiple Advisories)

Severity
4
CVSS
(AV:L/AC:M/Au:N/C:P/I:P/A:P)
Published
06/21/2024
Created
08/23/2024
Added
08/22/2024
Modified
08/28/2024

Description

In the Linux kernel, the following vulnerability has been resolved: tls: fix missing memory barrier in tls_init In tls_init(), a write memory barrier is missing, and store-store reordering may cause NULL dereference in tls_{setsockopt,getsockopt}. CPU0 CPU1 ----- ----- // In tls_init() // In tls_ctx_create() ctx = kzalloc() ctx->sk_proto = READ_ONCE(sk->sk_prot) -(1) // In update_sk_prot() WRITE_ONCE(sk->sk_prot, tls_prots) -(2) // In sock_common_setsockopt() READ_ONCE(sk->sk_prot)->setsockopt() // In tls_{setsockopt,getsockopt}() ctx->sk_proto->setsockopt() -(3) In the above scenario, when (1) and (2) are reordered, (3) can observe the NULL value of ctx->sk_proto, causing NULL dereference. To fix it, we rely on rcu_assign_pointer() which implies the release barrier semantic. By moving rcu_assign_pointer() after ctx->sk_proto is initialized, we can ensure that ctx->sk_proto are visible when changing sk->sk_prot.

Solution(s)

  • rocky-upgrade-bpftool
  • rocky-upgrade-bpftool-debuginfo
  • rocky-upgrade-kernel
  • rocky-upgrade-kernel-core
  • rocky-upgrade-kernel-cross-headers
  • rocky-upgrade-kernel-debug
  • rocky-upgrade-kernel-debug-core
  • rocky-upgrade-kernel-debug-debuginfo
  • rocky-upgrade-kernel-debug-devel
  • rocky-upgrade-kernel-debug-devel-matched
  • rocky-upgrade-kernel-debug-modules
  • rocky-upgrade-kernel-debug-modules-core
  • rocky-upgrade-kernel-debug-modules-extra
  • rocky-upgrade-kernel-debug-uki-virt
  • rocky-upgrade-kernel-debuginfo
  • rocky-upgrade-kernel-debuginfo-common-x86_64
  • rocky-upgrade-kernel-devel
  • rocky-upgrade-kernel-devel-matched
  • rocky-upgrade-kernel-headers
  • rocky-upgrade-kernel-modules
  • rocky-upgrade-kernel-modules-core
  • rocky-upgrade-kernel-modules-extra
  • rocky-upgrade-kernel-rt
  • rocky-upgrade-kernel-rt-core
  • rocky-upgrade-kernel-rt-debug
  • rocky-upgrade-kernel-rt-debug-core
  • rocky-upgrade-kernel-rt-debug-debuginfo
  • rocky-upgrade-kernel-rt-debug-devel
  • rocky-upgrade-kernel-rt-debug-kvm
  • rocky-upgrade-kernel-rt-debug-modules
  • rocky-upgrade-kernel-rt-debug-modules-core
  • rocky-upgrade-kernel-rt-debug-modules-extra
  • rocky-upgrade-kernel-rt-debuginfo
  • rocky-upgrade-kernel-rt-debuginfo-common-x86_64
  • rocky-upgrade-kernel-rt-devel
  • rocky-upgrade-kernel-rt-kvm
  • rocky-upgrade-kernel-rt-modules
  • rocky-upgrade-kernel-rt-modules-core
  • rocky-upgrade-kernel-rt-modules-extra
  • rocky-upgrade-kernel-tools
  • rocky-upgrade-kernel-tools-debuginfo
  • rocky-upgrade-kernel-tools-libs
  • rocky-upgrade-kernel-tools-libs-devel
  • rocky-upgrade-kernel-uki-virt
  • rocky-upgrade-kernel-zfcpdump
  • rocky-upgrade-kernel-zfcpdump-core
  • rocky-upgrade-kernel-zfcpdump-debuginfo
  • rocky-upgrade-kernel-zfcpdump-devel
  • rocky-upgrade-kernel-zfcpdump-devel-matched
  • rocky-upgrade-kernel-zfcpdump-modules
  • rocky-upgrade-kernel-zfcpdump-modules-core
  • rocky-upgrade-kernel-zfcpdump-modules-extra
  • rocky-upgrade-libperf
  • rocky-upgrade-libperf-debuginfo
  • rocky-upgrade-perf
  • rocky-upgrade-perf-debuginfo
  • rocky-upgrade-python3-perf
  • rocky-upgrade-python3-perf-debuginfo
  • rocky-upgrade-rtla
  • rocky-upgrade-rv

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;