CVE-2024-50035

Public on 2024-10-21
Modified on 2025-01-10
Description

In the Linux kernel, the following vulnerability has been resolved:

ppp: fix ppp_async_encode() illegal access

Severity
Important
See what this means
CVSS v3 Base Score
7.1
See breakdown

Affected Packages

Platform Package Release Date Advisory
Amazon Linux 1 kernel 2025-03-06 ALAS-2025-1961
Amazon Linux 2 - Core kernel 2025-03-06 ALAS2-2025-2775
Amazon Linux 2 - Kernel-5.10 Extra kernel 2024-10-31 ALAS2KERNEL-5.10-2024-072
Amazon Linux 2 - Kernel-5.4 Extra kernel 2025-01-24 ALAS2KERNEL-5.4-2025-090

CVSS Scores

Score Type Score Vector
Amazon Linux CVSSv3 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
NVD CVSSv3 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H