CVE-2024-0841

Updated: 2024-11-30 04:29:03.778599

Description:

A null pointer dereference flaw was found in the hugetlbfs_fill_super function in the Linux kernel hugetlbfs (HugeTLB pages) functionality. This issue may allow a local user to crash the system or potentially escalate their privileges on the system.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0
CVSS Version 3.x HIGH 7.8

Status

OS name Project name Version Score Severity Status Errata Last updated

Statement

AlmaLinux 9.2 ESU php 8.0.30 7.8 HIGH Not Vulnerable 2025-01-15 01:09:49
AlmaLinux 9.2 ESU kernel 5.14.0 7.8 HIGH Released CLSA-2024:1722533082 2024-08-01 14:35:26
AlmaLinux 9.2 FIPS kernel 5.14.0 7.8 HIGH Released CLSA-2024:1722530110 2024-08-01 14:35:26
CentOS 6 ELS kernel 2.6.32 7.8 HIGH Not Vulnerable 2024-05-22 10:12:31
CentOS 7 ELS kernel 3.10.0 7.8 HIGH Not Vulnerable 2024-05-22 10:12:31
CentOS 8.4 ELS php 7.4.6 7.8 HIGH Not Vulnerable 2024-10-01 05:24:00
CentOS 8.4 ELS kernel 4.18.0 7.8 HIGH Released CLSA-2024:1715949385 2024-05-17 10:09:44
CentOS 8.5 ELS php 7.4.19 7.8 HIGH Not Vulnerable 2024-10-01 05:24:00
CentOS 8.5 ELS kernel 4.18.0 7.8 HIGH Released CLSA-2024:1715951065 2024-05-17 10:09:44
CentOS Stream 8 ELS php 7.2.24 7.8 HIGH Not Vulnerable 2024-10-01 05:24:00
Total: 18