Launchpad CVE tracker

CVE 2024-35918

In the Linux kernel, the following vulnerability has been resolved: randomize_kstack: Improve entropy diffusion The kstack_offset variable was really only ever using the low bits for kernel stack offset entropy. Add a ror32() to increase bit diffusion.

Related bugs and status

CVE-2024-35918 (Candidate) is related to these bugs:

Bug #2073267: Virtualbox Guru meditation on VM start caused by kernel commit in v6.9-rc4

		In	Importance	Status
2073267	Virtualbox Guru meditation on VM start caused by kernel commit in v6.9-rc4	virtualbox (Ubuntu)	Critical	Confirmed
2073267	Virtualbox Guru meditation on VM start caused by kernel commit in v6.9-rc4	linux-signed-hwe-5.15 (Ubuntu)	Undecided	Confirmed
2073267	Virtualbox Guru meditation on VM start caused by kernel commit in v6.9-rc4	linux (Ubuntu)	Undecided	Invalid
2073267	Virtualbox Guru meditation on VM start caused by kernel commit in v6.9-rc4	linux (Ubuntu Jammy)	High	Fix Released
2073267	Virtualbox Guru meditation on VM start caused by kernel commit in v6.9-rc4	linux-signed-hwe-5.15 (Ubuntu Jammy)	Undecided	Invalid
2073267	Virtualbox Guru meditation on VM start caused by kernel commit in v6.9-rc4	virtualbox (Ubuntu Jammy)	Undecided	Confirmed
2073267	Virtualbox Guru meditation on VM start caused by kernel commit in v6.9-rc4	linux-hwe-6.8 (Ubuntu)	Undecided	Invalid
2073267	Virtualbox Guru meditation on VM start caused by kernel commit in v6.9-rc4	linux-hwe-6.8 (Ubuntu Jammy)	High	Fix Committed

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2024-35918

References