CVE-2024-42272
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-42272
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-42272.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2024-42272
- Downstream
- Related
- Published
- 2024-08-17T08:54:26Z
- Modified
- 2025-10-15T14:00:23.840956Z
- Summary
- sched: act_ct: take care of padding in struct zones_ht_key
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
sched: actct: take care of padding in struct zonesht_key
Blamed commit increased lookup key size from 2 bytes to 16 bytes, because zoneshtkey got a struct net pointer.
Make sure rhashtable_lookup() is not using the padding bytes which are not initialized.
BUG: KMSAN: uninit-value in rhtptrrcu include/linux/rhashtable.h:376 [inline] BUG: KMSAN: uninit-value in rhashtablelookup include/linux/rhashtable.h:607 [inline] BUG: KMSAN: uninit-value in rhashtablelookup include/linux/rhashtable.h:646 [inline] BUG: KMSAN: uninit-value in rhashtablelookupfast include/linux/rhashtable.h:672 [inline] BUG: KMSAN: uninit-value in tcfctflowtableget+0x611/0x2260 net/sched/actct.c:329 rhtptrrcu include/linux/rhashtable.h:376 [inline] _rhashtablelookup include/linux/rhashtable.h:607 [inline] rhashtablelookup include/linux/rhashtable.h:646 [inline] rhashtablelookupfast include/linux/rhashtable.h:672 [inline] tcfctflowtableget+0x611/0x2260 net/sched/actct.c:329 tcfctinit+0xa67/0x2890 net/sched/actct.c:1408 tcfactioninit1+0x6cc/0xb30 net/sched/actapi.c:1425 tcfactioninit+0x458/0xf00 net/sched/actapi.c:1488 tcfactionadd net/sched/actapi.c:2061 [inline] tcctlaction+0x4be/0x19d0 net/sched/actapi.c:2118 rtnetlinkrcvmsg+0x12fc/0x1410 net/core/rtnetlink.c:6647 netlinkrcvskb+0x375/0x650 net/netlink/afnetlink.c:2550 rtnetlinkrcv+0x34/0x40 net/core/rtnetlink.c:6665 netlinkunicastkernel net/netlink/afnetlink.c:1331 [inline] netlinkunicast+0xf52/0x1260 net/netlink/afnetlink.c:1357 netlinksendmsg+0x10da/0x11e0 net/netlink/afnetlink.c:1901 socksendmsgnosec net/socket.c:730 [inline] _socksendmsg+0x30f/0x380 net/socket.c:745 syssendmsg+0x877/0xb60 net/socket.c:2597 _syssendmsg+0x28d/0x3c0 net/socket.c:2651 _syssendmsg net/socket.c:2680 [inline] _dosyssendmsg net/socket.c:2689 [inline] _sesyssendmsg net/socket.c:2687 [inline] _x64syssendmsg+0x307/0x4a0 net/socket.c:2687 x64syscall+0x2dd6/0x3c10 arch/x86/include/generated/asm/syscalls64.h:47 dosyscallx64 arch/x86/entry/common.c:52 [inline] dosyscall64+0xcd/0x1e0 arch/x86/entry/common.c:83 entrySYSCALL64afterhwframe+0x77/0x7f
Local variable key created at: tcfctflowtableget+0x4a/0x2260 net/sched/actct.c:324 tcfctinit+0xa67/0x2890 net/sched/actct.c:1408
- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/2191a54f63225b548fd8346be3611c3219a24738
- https://git.kernel.org/stable/c/3a5b68869dbe14f1157c6a24ac71923db060eeab
- https://git.kernel.org/stable/c/3ddefcb8f75e312535e2e7d5fef9932019ba60f2
- https://git.kernel.org/stable/c/7c03ab555eb1ba26c77fd7c25bdf44a0ac23edee
- https://git.kernel.org/stable/c/d06daf0ad645d9225a3ff6958dd82e1f3988fa64
- https://git.kernel.org/stable/c/d7cc186d0973afce0e1237c37f7512c01981fb79
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced03f625505e27f709390a86c9b78d3707f4c23df8Fixed7c03ab555eb1ba26c77fd7c25bdf44a0ac23edee
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedaa1f81fe3a059bc984b230b5352ab89d06aa3c7bFixed3ddefcb8f75e312535e2e7d5fef9932019ba60f2
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced2f82f75f843445daa81e8b2a76774b1348033ce6Fixedd06daf0ad645d9225a3ff6958dd82e1f3988fa64
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced9126fd82e9edc7b4796f756e4b258d34f17e5e4aFixedd7cc186d0973afce0e1237c37f7512c01981fb79
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced88c67aeb14070bab61d3dd8be96c8b42ebcaf53aFixed3a5b68869dbe14f1157c6a24ac71923db060eeab
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced88c67aeb14070bab61d3dd8be96c8b42ebcaf53aFixed2191a54f63225b548fd8346be3611c3219a24738
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedb4382b854975ae96fbfcc83a1d79b5c063c1aaa8
Affected versions
v5.*
v5.10.1
v5.10.10
v5.10.11
v5.10.12
v5.10.13
v5.10.14
v5.10.15
v5.10.16
v5.10.17
v5.10.18
v5.10.19
v5.10.2
v5.10.221
v5.10.222
v5.10.223
v5.10.3
v5.10.4
v5.10.5
v5.10.6
v5.10.7
v5.10.8
v5.10.9
v5.11.1
v5.11.10
v5.11.11
v5.11.12
v5.11.13
v5.11.14
v5.11.15
v5.11.16
v5.11.17
v5.11.18
v5.11.19
v5.11.2
v5.11.20
v5.11.21
v5.11.3
v5.11.4
v5.11.5
v5.11.6
v5.11.7
v5.11.8
v5.11.9
v5.12.1
v5.12.10
v5.12.11
v5.12.12
v5.12.13
v5.12.14
v5.12.15
v5.12.16
v5.12.17
v5.12.18
v5.12.19
v5.12.2
v5.12.3
v5.12.4
v5.12.5
v5.12.6
v5.12.7
v5.12.8
v5.12.9
v5.13.1
v5.13.10
v5.13.11
v5.13.12
v5.13.13
v5.13.14
v5.13.15
v5.13.16
v5.13.17
v5.13.18
v5.13.2
v5.13.3
v5.13.4
v5.13.5
v5.13.6
v5.13.7
v5.13.8
v5.13.9
v5.14.1
v5.14.10
v5.14.11
v5.14.12
v5.14.13
v5.14.14
v5.14.15
v5.14.16
v5.14.17
v5.14.18
v5.14.19
v5.14.2
v5.14.20
v5.14.3
v5.14.4
v5.14.5
v5.14.6
v5.14.7
v5.14.8
v5.14.9
v5.15.1
v5.15.10
v5.15.11
v5.15.12
v5.15.13
v5.15.14
v5.15.15
v5.15.16
v5.15.162
v5.15.163
v5.15.164
v5.15.17
v5.15.18
v5.15.19
v5.15.2
v5.15.3
v5.15.4
v5.15.5
v5.15.6
v5.15.7
v5.15.8
v5.15.9
v5.16.1
v5.16.10
v5.16.11
v5.16.12
v5.16.13
v5.16.14
v5.16.15
v5.16.16
v5.16.17
v5.16.18
v5.16.19
v5.16.2
v5.16.20
v5.16.3
v5.16.4
v5.16.5
v5.16.6
v5.16.7
v5.16.8
v5.16.9
v5.17.1
v5.17.10
v5.17.11
v5.17.12
v5.17.13
v5.17.14
v5.17.2
v5.17.3
v5.17.4
v5.17.5
v5.17.6
v5.17.7
v5.17.8
v5.17.9
v5.18.1
v5.18.10
v5.18.11
v5.18.12
v5.18.13
v5.18.14
v5.18.15
v5.18.16
v5.18.17
v5.18.18
v5.18.19
v5.18.2
v5.18.3
v5.18.4
v5.18.5
v5.18.6
v5.18.7
v5.18.8
v5.18.9
v5.19.1
v5.19.10
v5.19.11
v5.19.12
v5.19.13
v5.19.14
v5.19.15
v5.19.16
v5.19.2
v5.19.3
v5.19.4
v5.19.5
v5.19.6
v5.19.7
v5.19.8
v5.19.9
v5.6.1
v5.6.10
v5.6.11
v5.6.12
v5.6.13
v5.6.14
v5.6.15
v5.6.16
v5.6.17
v5.6.18
v5.6.2
v5.6.3
v5.6.4
v5.6.5
v5.6.6
v5.6.7
v5.6.8
v5.6.9
v5.7.1
v5.7.10
v5.7.11
v5.7.12
v5.7.13
v5.7.14
v5.7.15
v5.7.16
v5.7.2
v5.7.3
v5.7.4
v5.7.5
v5.7.6
v5.7.7
v5.7.8
v5.7.9
v5.8.1
v5.8.10
v5.8.11
v5.8.12
v5.8.13
v5.8.14
v5.8.15
v5.8.16
v5.8.17
v5.8.18
v5.8.2
v5.8.3
v5.8.4
v5.8.5
v5.8.6
v5.8.7
v5.8.8
v5.8.9
v5.9.1
v5.9.10
v5.9.11
v5.9.12
v5.9.13
v5.9.14
v5.9.15
v5.9.16
v5.9.2
v5.9.3
v5.9.4
v5.9.5
v5.9.6
v5.9.7
v5.9.8
v5.9.9
v6.*
v6.0.1
v6.0.10
v6.0.11
v6.0.12
v6.0.13
v6.0.14
v6.0.15
v6.0.16
v6.0.17
v6.0.18
v6.0.2
v6.0.3
v6.0.4
v6.0.5
v6.0.6
v6.0.7
v6.0.8
v6.0.9
v6.1.1
v6.1.10
v6.1.100
v6.1.101
v6.1.102
v6.1.103
v6.1.11
v6.1.12
v6.1.13
v6.1.14
v6.1.15
v6.1.2
v6.1.3
v6.1.4
v6.1.5
v6.1.6
v6.1.7
v6.1.8
v6.1.9
v6.1.96
v6.1.97
v6.1.98
v6.1.99
v6.10
v6.10-rc1
v6.10-rc2
v6.10-rc3
v6.10-rc4
v6.10-rc5
v6.10-rc6
v6.10-rc7
v6.10.1
v6.10.10
v6.10.11
v6.10.12
v6.10.13
v6.10.2
v6.10.3
v6.10.4
v6.10.5
v6.10.6
v6.10.7
v6.10.8
v6.10.9
v6.11
v6.11-rc1
v6.11-rc2
v6.11-rc3
v6.11-rc4
v6.11-rc5
v6.11-rc6
v6.11-rc7
v6.11.1
v6.11.10
v6.11.11
v6.11.2
v6.11.3
v6.11.4
v6.11.5
v6.11.6
v6.11.7
v6.11.8
v6.11.9
v6.12
v6.12-rc1
v6.12-rc2
v6.12-rc3
v6.12-rc4
v6.12-rc5
v6.12-rc6
v6.12-rc7
v6.12.1
v6.12.10
v6.12.11
v6.12.12
v6.12.13
v6.12.14
v6.12.2
v6.12.3
v6.12.4
v6.12.5
v6.12.6
v6.12.7
v6.12.8
v6.12.9
v6.13
v6.13-rc1
v6.13-rc2
v6.13-rc3
v6.13-rc4
v6.13-rc5
v6.13-rc6
v6.13-rc7
v6.13.1
v6.13.10
v6.13.11
v6.13.12
v6.13.2
v6.13.3
v6.13.4
v6.13.5
v6.13.6
v6.13.7
v6.13.8
v6.13.9
v6.14
v6.14-rc1
v6.14-rc2
v6.14-rc3
v6.14-rc4
v6.14-rc5
v6.14-rc6
v6.14-rc7
v6.14.1
v6.14.10
v6.14.11
v6.14.2
v6.14.3
v6.14.4
v6.14.5
v6.14.6
v6.14.7
v6.14.8
v6.14.9
v6.15
v6.15-rc1
v6.15-rc2
v6.15-rc3
v6.15-rc4
v6.15-rc5
v6.15-rc6
v6.15-rc7
v6.15.1
v6.15.10
v6.15.11
v6.15.2
v6.15.3
v6.15.4
v6.15.5
v6.15.6
v6.15.7
v6.15.8
v6.15.9
v6.16
v6.16-rc1
v6.16-rc2
v6.16-rc3
v6.16-rc4
v6.16-rc5
v6.16-rc6
v6.16-rc7
v6.16.1
v6.16.10
v6.16.11
v6.16.12
v6.16.2
v6.16.3
v6.16.4
v6.16.5
v6.16.6
v6.16.7
v6.16.8
v6.16.9
v6.17
v6.17-rc1
v6.17-rc2
v6.17-rc3
v6.17-rc4
v6.17-rc5
v6.17-rc6
v6.17-rc7
v6.17.1
v6.17.2
v6.17.3
v6.2.1
v6.2.10
v6.2.11
v6.2.12
v6.2.13
v6.2.14
v6.2.15
v6.2.2
v6.2.3
v6.2.4
v6.2.5
v6.2.6
v6.2.7
v6.2.8
v6.2.9
v6.3.1
v6.3.10
v6.3.11
v6.3.12
v6.3.2
v6.3.3
v6.3.4
v6.3.5
v6.3.6
v6.3.7
v6.3.8
v6.3.9
v6.4.1
v6.4.10
v6.4.11
v6.4.12
v6.4.13
v6.4.14
v6.4.15
v6.4.16
v6.4.2
v6.4.3
v6.4.4
v6.4.5
v6.4.6
v6.4.7
v6.4.8
v6.4.9
v6.5.1
v6.5.10
v6.5.11
v6.5.12
v6.5.13
v6.5.2
v6.5.3
v6.5.4
v6.5.5
v6.5.6
v6.5.7
v6.5.8
v6.5.9
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.14
v6.6.2
v6.6.3
v6.6.36
v6.6.37
v6.6.38
v6.6.39
v6.6.4
v6.6.40
v6.6.41
v6.6.42
v6.6.43
v6.6.44
v6.6.5
v6.6.6
v6.6.7
v6.6.8
v6.6.9
v6.7.1
v6.7.10
v6.7.11
v6.7.2
v6.7.3
v6.7.4
v6.7.5
v6.7.6
v6.7.7
v6.7.8
v6.7.9
v6.8.1
v6.8.10
v6.8.11
v6.8.2
v6.8.3
v6.8.4
v6.8.5
v6.8.6
v6.8.7
v6.8.8
v6.8.9
v6.9.10
v6.9.11
v6.9.12
v6.9.7
v6.9.8
v6.9.9
Database specific
{
"vanir_signatures": [
{
"signature_version": "v1",
"signature_type": "Line",
"target": {
"file": "net/sched/act_ct.c"
},
"deprecated": false,
"digest": {
"line_hashes": [
"29462327311403041943181949013414395376",
"133676314839697514315787485905498199863",
"201178060094332687397629076099668101596",
"279116153860156452563767299421739306889",
"144301035380230140047723294685088972254",
"241697515191806774685637802098375896781",
"248527978478361952927769935865928895927",
"279062268354751710418384011598719574106"
],
"threshold": 0.9
},
"id": "CVE-2024-42272-14cb0867",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3ddefcb8f75e312535e2e7d5fef9932019ba60f2"
},
{
"signature_version": "v1",
"signature_type": "Line",
"target": {
"file": "net/sched/act_ct.c"
},
"deprecated": false,
"digest": {
"line_hashes": [
"29462327311403041943181949013414395376",
"133676314839697514315787485905498199863",
"201178060094332687397629076099668101596",
"279116153860156452563767299421739306889",
"144301035380230140047723294685088972254",
"241697515191806774685637802098375896781",
"248527978478361952927769935865928895927",
"279062268354751710418384011598719574106"
],
"threshold": 0.9
},
"id": "CVE-2024-42272-2abf101c",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7c03ab555eb1ba26c77fd7c25bdf44a0ac23edee"
},
{
"signature_version": "v1",
"signature_type": "Line",
"target": {
"file": "net/sched/act_ct.c"
},
"deprecated": false,
"digest": {
"line_hashes": [
"29462327311403041943181949013414395376",
"133676314839697514315787485905498199863",
"201178060094332687397629076099668101596",
"279116153860156452563767299421739306889",
"144301035380230140047723294685088972254",
"241697515191806774685637802098375896781",
"248527978478361952927769935865928895927",
"279062268354751710418384011598719574106"
],
"threshold": 0.9
},
"id": "CVE-2024-42272-3a923594",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@2191a54f63225b548fd8346be3611c3219a24738"
},
{
"signature_version": "v1",
"signature_type": "Line",
"target": {
"file": "net/sched/act_ct.c"
},
"deprecated": false,
"digest": {
"line_hashes": [
"29462327311403041943181949013414395376",
"133676314839697514315787485905498199863",
"201178060094332687397629076099668101596",
"279116153860156452563767299421739306889",
"144301035380230140047723294685088972254",
"241697515191806774685637802098375896781",
"248527978478361952927769935865928895927",
"279062268354751710418384011598719574106"
],
"threshold": 0.9
},
"id": "CVE-2024-42272-b69c58f2",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3a5b68869dbe14f1157c6a24ac71923db060eeab"
},
{
"signature_version": "v1",
"signature_type": "Line",
"target": {
"file": "net/sched/act_ct.c"
},
"deprecated": false,
"digest": {
"line_hashes": [
"29462327311403041943181949013414395376",
"133676314839697514315787485905498199863",
"201178060094332687397629076099668101596",
"279116153860156452563767299421739306889",
"144301035380230140047723294685088972254",
"241697515191806774685637802098375896781",
"248527978478361952927769935865928895927",
"279062268354751710418384011598719574106"
],
"threshold": 0.9
},
"id": "CVE-2024-42272-be6260c8",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d7cc186d0973afce0e1237c37f7512c01981fb79"
},
{
"signature_version": "v1",
"signature_type": "Line",
"target": {
"file": "net/sched/act_ct.c"
},
"deprecated": false,
"digest": {
"line_hashes": [
"29462327311403041943181949013414395376",
"133676314839697514315787485905498199863",
"201178060094332687397629076099668101596",
"279116153860156452563767299421739306889",
"144301035380230140047723294685088972254",
"241697515191806774685637802098375896781",
"248527978478361952927769935865928895927",
"279062268354751710418384011598719574106"
],
"threshold": 0.9
},
"id": "CVE-2024-42272-ef1e6d68",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d06daf0ad645d9225a3ff6958dd82e1f3988fa64"
}
]
}
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed5.10.224
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.165
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.104
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.6.45
- Type
- ECOSYSTEM
- Events
-
Introduced6.7.0Fixed6.10.4