Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

Vulnerability Intelligence

Customers

CVE-2024-45021 | Mondoo Vulnerability Intelligence

Vulnerability IntelligenceCVE-2024-45021

CVE-2024-45021

MEDIUM5.5

memcg_write_event_control(): fix a user-triggerable oops

Published Sep 11, 2024

Modified 4 months ago

Details

In the Linux kernel, the following vulnerability has been resolved:

memcg_write_event_control(): fix a user-triggerable oops

we are not guaranteed that anything past the terminating NUL is mapped (let alone initialized with anything sane).

References

WEB

https://git.kernel.org/stable/c/046667c4d3196938e992fba0dfcde570aa85cd0e

WEB

https://git.kernel.org/stable/c/0fbe2a72e853a1052abe9bc2b7df8ddb102da227

WEB

https://git.kernel.org/stable/c/1b37ec85ad95b612307627758c6018cd9d92cca8

WEB

https://git.kernel.org/stable/c/21b578f1d599edb87462f11113c5b0fc7a04ac61

WEB

https://git.kernel.org/stable/c/43768fa80fd192558737e24ed6548f74554611d7

WEB

https://git.kernel.org/stable/c/ad149f5585345e383baa65f1539d816cd715fd3b

WEB

https://git.kernel.org/stable/c/f1aa7c509aa766080db7ab3aec2e31b1df09e57c

WEB

https://git.kernel.org/stable/c/fa5bfdf6cb5846a00e712d630a43e3cf55ccb411

WEB

https://lists.debian.org/debian-lts-announce/2024/10/msg00003.html

WEB

https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html

ADVISORY

https://www.cve.org/CVERecord?id=CVE-2024-45021

CVSS Analysis

CVSS v3.1

5.5

Exploitability

Attack Vector

LocalAV:L

Attack Complexity

LowAC:L

Privileges Required

LowPR:L

User Interaction

NoneUI:N

Scope

UnchangedS:U

Impact

Confidentiality

NoneC:N

Integrity

NoneI:N

Availability

HighA:H

5.5/CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Ecosystems

Timeline

PublishedSep 11, 2024

ModifiedNov 3, 2025