Description

In the Linux kernel, the following vulnerability has been resolved: ELF: fix kernel.randomize_va_space double read ELF loader uses "randomize_va_space" twice. It is sysctl and can change at any moment, so 2 loads could see 2 different values in theory with unpredictable consequences. Issue exactly one load for consistent value across one exec.

INFO

Published Date :

2024-09-27T12:39:25.860Z

Last Modified :

2026-01-05T10:53:25.693Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-46826 vulnerability.

Vendors Products
Linux
  • Linux Kernel
Redhat
  • Enterprise Linux
  • Rhel Eus
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-46826.

URL Resource
https://git.kernel.org/stable/c/1cf8cd80903073440b6ea055811d04edd24fe4f7 cve-icon cve-icon
https://git.kernel.org/stable/c/1f81d51141a234ad0a3874b4d185dc27a521cd27 cve-icon cve-icon
https://git.kernel.org/stable/c/2a97388a807b6ab5538aa8f8537b2463c6988bd2 cve-icon cve-icon
https://git.kernel.org/stable/c/53f17409abf61f66b6f05aff795e938e5ba811d1 cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html cve-icon
https://lore.kernel.org/linux-cve-announce/2024092750-CVE-2024-46826-7b80@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-46826 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-46826 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact