CVE-2024-26920 Affecting perf package, versions *
Threat Intelligence
EPSS
0.05% (16th
percentile)
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk ID SNYK-CENTOS7-PERF-6638923
- published 18 Apr 2024
- disclosed 17 Apr 2024
Introduced: 17 Apr 2024
CVE-2024-26920 Open this link in a new tabHow to fix?
There is no fixed version for Centos:7
perf
.
NVD Description
Note: Versions mentioned in the description apply only to the upstream perf
package and not the perf
package as distributed by Centos
.
See How to fix?
for Centos:7
relevant fixed versions and status.
In the Linux kernel, the following vulnerability has been resolved:
tracing/trigger: Fix to return error if failed to alloc snapshot
Fix register_snapshot_trigger() to return error code if it failed to allocate a snapshot instead of 0 (success). Unless that, it will register snapshot trigger without an error.
References
- https://access.redhat.com/security/cve/CVE-2024-26920
- https://git.kernel.org/stable/c/0958b33ef5a04ed91f61cef4760ac412080c4e08
- https://git.kernel.org/stable/c/36be97e9eb535fe3008a5cb040b1e56f29f2e398
- https://git.kernel.org/stable/c/4b001ef14baab16b553a002cb9979e31b8fc0c6b
- https://git.kernel.org/stable/c/56cfbe60710772916a5ba092c99542332b48e870
- https://git.kernel.org/stable/c/6022c065c9ec465d84cebff8f480db083e4ee06b
- https://git.kernel.org/stable/c/8ffd5590f4d6ef5460acbeac7fbdff7025f9b419
- https://git.kernel.org/stable/c/b5085b5ac1d96ea2a8a6240f869655176ce44197
- https://git.kernel.org/stable/c/bcf4a115a5068f3331fafb8c176c1af0da3d8b19
- https://git.kernel.org/stable/c/2a3073d58382157ab396734ed4e421ba9e969db1
- https://git.kernel.org/stable/c/2450a69d2ee75d1f0112d509ac82ef98f5ad6b5f
- https://git.kernel.org/stable/c/26ebeffff238488466fa578be3b35b8a46e69906
- https://git.kernel.org/stable/c/34925d01baf3ee62ab21c21efd9e2c44c24c004a
CVSS Scores
version 3.1