2276111 – (CVE-2024-3979) CVE-2024-3979 vsomeip: race condition may lead to crashes or inconsistent behavior

Bug 2276111 (CVE-2024-3979) - CVE-2024-3979 vsomeip: race condition may lead to crashes or inconsistent behavior

Summary: CVE-2024-3979 vsomeip: race condition may lead to crashes or inconsistent beh...

Keywords:
Status:	NEW
Alias:	CVE-2024-3979
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	low
Severity:	low
Target Milestone:	---
Assignee:	Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2276112
Blocks:
TreeView+	depends on / blocked

Reported:	2024-04-19 18:44 UTC by Robb Gatica
Modified:	2024-04-19 18:44 UTC (History)
CC List:	0 users
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description Robb Gatica 2024-04-19 18:44:45 UTC

A vulnerability, which was classified as problematic, has been found in COVESA vsomeip up to 3.4.10. Affected by this issue is some unknown functionality. The manipulation leads to race condition. An attack has to be approached locally. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-261596.

https://github.com/COVESA/vsomeip/files/14904610/details.zip
https://github.com/COVESA/vsomeip/issues/663
https://vuldb.com/?ctiid.261596
https://vuldb.com/?id.261596
https://vuldb.com/?submit.312410

Comment 1 Robb Gatica 2024-04-19 18:44:58 UTC

Created vsomeip3 tracking bugs for this issue:

Affects: fedora-all [bug 2276112]

Note You need to log in before you can comment on or make changes to this bug.