CVE-2024-0340 : A vulnerability was found in vhost_new_msg in drivers/vhost/vhost.c in the Linux

A vulnerability was found in vhost_new_msg in drivers/vhost/vhost.c in the Linux kernel, which does not properly initialize memory in messages passed between virtual guests and the host operating system in the vhost/vhost.c:vhost_new_msg() function. This issue can allow local privileged users to read some kernel memory contents when reading from the /dev/vhost-net device file.

Published 2024-01-09 18:15:48

Updated 2025-05-14 04:16:07

Source Red Hat, Inc.

View at NVD, CVE.org

Products affected by CVE-2024-0340

Linux » Linux Kernel
Versions before (<) 6.4
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 6.4 Update RC1
cpe:2.3:o:linux:linux_kernel:6.4:rc1:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 6.4 Update RC4
cpe:2.3:o:linux:linux_kernel:6.4:rc4:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 6.4 Update RC5
cpe:2.3:o:linux:linux_kernel:6.4:rc5:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 6.4 Update RC2
cpe:2.3:o:linux:linux_kernel:6.4:rc2:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 6.4 Update RC3
cpe:2.3:o:linux:linux_kernel:6.4:rc3:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2024-0340

EPSS FAQ

0.01%

Probability of exploitation activity in the next 30 days EPSS Score History

~ %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2024-0340

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
5.5	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N	1.8	3.6	NIST	2024-01-16
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: High Integrity: None Availability: None
4.4	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N	0.8	3.6	Red Hat, Inc.	2024-01-09
Attack Vector: Local Attack Complexity: Low Privileges Required: High User Interaction: None Scope: Unchanged Confidentiality: High Integrity: None Availability: None

CWE ids for CVE-2024-0340

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

Assigned by: secalert@redhat.com (Secondary)

References for CVE-2024-0340

https://bugzilla.redhat.com/show_bug.cgi?id=2257406

2257406 – (CVE-2024-0340) CVE-2024-0340 kernel: Information disclosure in vhost/vhost.c:vhost_new_msg()
Issue Tracking;Patch;Third Party Advisory
https://lore.kernel.org/lkml/5kn47peabxjrptkqa6dwtyus35ahf4pcj4qm4pumse33kxqpjw@mec4se5relrc/T/

[PATCH] vhost: use kzalloc() instead of kmalloc() followed by memset()
Mailing List;Patch
https://access.redhat.com/errata/RHSA-2025:7526
https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html

[SECURITY] [DLA 3840-1] linux security update

CVEs referencing this url
https://access.redhat.com/errata/RHSA-2024:9315

RHSA-2024:9315 - Security Advisory - Red Hat Customer Portal

CVEs referencing this url
https://access.redhat.com/errata/RHSA-2024:3618

RHSA-2024:3618 - Security Advisory - Red Hat Customer Portal

CVEs referencing this url
https://access.redhat.com/errata/RHSA-2024:3627

RHSA-2024:3627 - Security Advisory - Red Hat Customer Portal

CVEs referencing this url
https://access.redhat.com/security/cve/CVE-2024-0340

CVE-2024-0340- Red Hat Customer Portal
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html

[SECURITY] [DLA 3842-1] linux-5.10 security update

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2024-0340

Products affected by CVE-2024-0340

Exploit prediction scoring system (EPSS) score for CVE-2024-0340

CVSS scores for CVE-2024-0340

CWE ids for CVE-2024-0340

References for CVE-2024-0340