Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2024-46854
PUBLISHED
More InfoOfficial Page
Assigner-Linux
Assigner Org ID-416baaa9-dc9f-4396-8d5f-8c081fb06d67
View Known Exploited Vulnerability (KEV) details
Published At-27 Sep, 2024 | 12:42
Updated At-04 May, 2025 | 09:36
Rejected At-
▼CVE Numbering Authority (CNA)
net: dpaa: Pad packets to ETH_ZLEN

In the Linux kernel, the following vulnerability has been resolved: net: dpaa: Pad packets to ETH_ZLEN When sending packets under 60 bytes, up to three bytes of the buffer following the data may be leaked. Avoid this by extending all packets to ETH_ZLEN, ensuring nothing is leaked in the padding. This bug can be reproduced by running $ ping -s 11 destination

Affected Products
Vendor
Linux Kernel Organization, IncLinux
Product
Linux
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Program Files
  • drivers/net/ethernet/freescale/dpaa/dpaa_eth.c
Default Status
unaffected
Versions
Affected
  • From 9ad1a37493338cacf04e2c93acf44d151a7adda8 before cd5b9d657ecd44ad5f254c3fea3a6ab1cf0e2ef7 (git)
  • From 9ad1a37493338cacf04e2c93acf44d151a7adda8 before dc43a096cfe65b5c32168313846c5cd135d08f1d (git)
  • From 9ad1a37493338cacf04e2c93acf44d151a7adda8 before 1f31f51bfc8214a6deaac2920e6342cb9d019133 (git)
  • From 9ad1a37493338cacf04e2c93acf44d151a7adda8 before 38f5db5587c0ee53546b28c50ba128253181ac83 (git)
  • From 9ad1a37493338cacf04e2c93acf44d151a7adda8 before f43190e33224c49e1c7ebbc25923ff400d87ec00 (git)
  • From 9ad1a37493338cacf04e2c93acf44d151a7adda8 before 34fcac26216ce17886af3eb392355b459367af1a (git)
  • From 9ad1a37493338cacf04e2c93acf44d151a7adda8 before ce8eabc912fe9b9a62be1a5c6af5ad2196e90fc2 (git)
  • From 9ad1a37493338cacf04e2c93acf44d151a7adda8 before cbd7ec083413c6a2e0c326d49e24ec7d12c7a9e0 (git)
Vendor
Linux Kernel Organization, IncLinux
Product
Linux
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Program Files
  • drivers/net/ethernet/freescale/dpaa/dpaa_eth.c
Default Status
affected
Versions
Affected
  • 4.10
Unaffected
  • From 0 before 4.10 (semver)
  • From 4.19.323 through 4.19.* (semver)
  • From 5.4.285 through 5.4.* (semver)
  • From 5.10.227 through 5.10.* (semver)
  • From 5.15.168 through 5.15.* (semver)
  • From 6.1.111 through 6.1.* (semver)
  • From 6.6.52 through 6.6.* (semver)
  • From 6.10.11 through 6.10.* (semver)
  • From 6.11 through * (original_commit_for_fix)
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://git.kernel.org/stable/c/cd5b9d657ecd44ad5f254c3fea3a6ab1cf0e2ef7
N/A
https://git.kernel.org/stable/c/dc43a096cfe65b5c32168313846c5cd135d08f1d
N/A
https://git.kernel.org/stable/c/1f31f51bfc8214a6deaac2920e6342cb9d019133
N/A
https://git.kernel.org/stable/c/38f5db5587c0ee53546b28c50ba128253181ac83
N/A
https://git.kernel.org/stable/c/f43190e33224c49e1c7ebbc25923ff400d87ec00
N/A
https://git.kernel.org/stable/c/34fcac26216ce17886af3eb392355b459367af1a
N/A
https://git.kernel.org/stable/c/ce8eabc912fe9b9a62be1a5c6af5ad2196e90fc2
N/A
https://git.kernel.org/stable/c/cbd7ec083413c6a2e0c326d49e24ec7d12c7a9e0
N/A
▼Authorized Data Publishers (ADP)
CISA ADP Vulnrichment
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
Details not found