{"uuid": "94a1d6fb-2205-4f4d-9fb2-d0d471940963", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-42254", "type": "seen", "source": "https://t.me/cvedetector/2761", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-42254 - Linux io_uring Null Pointer Dereference Denial of Service Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-42254 \nPublished : Aug. 8, 2024, 9:15 a.m. | 34\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved:  \n  \nio_uring: fix error pbuf checking  \n  \nSyz reports a problem, which boils down to NULL vs IS_ERR inconsistent  \nerror handling in io_alloc_pbuf_ring().  \n  \nKASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]  \nRIP: 0010:__io_remove_buffers+0xac/0x700 io_uring/kbuf.c:341  \nCall Trace:  \n   \n io_put_bl io_uring/kbuf.c:378 [inline]  \n io_destroy_buffers+0x14e/0x490 io_uring/kbuf.c:392  \n io_ring_ctx_free+0xa00/0x1070 io_uring/io_uring.c:2613  \n io_ring_exit_work+0x80f/0x8a0 io_uring/io_uring.c:2844  \n process_one_work kernel/workqueue.c:3231 [inline]  \n process_scheduled_works+0xa2c/0x1830 kernel/workqueue.c:3312  \n worker_thread+0x86d/0xd40 kernel/workqueue.c:3390  \n kthread+0x2f0/0x390 kernel/kthread.c:389  \n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147  \n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244 \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-08T12:12:48.000000Z"}