NVD Vulnerability Detail

CVE-2024-42247

Summary	In the Linux kernel, the following vulnerability has been resolved: wireguard: allowedips: avoid unaligned 64-bit memory accesses On the parisc platform, the kernel issues kernel warnings because swap_endian() tries to load a 128-bit IPv6 address from an unaligned memory location: Kernel: unaligned access to 0x55f4688c in wg_allowedips_insert_v6+0x2c/0x80 [wireguard] (iir 0xf3010df) Kernel: unaligned access to 0x55f46884 in wg_allowedips_insert_v6+0x38/0x80 [wireguard] (iir 0xf2010dc) Avoid such unaligned memory accesses by instead using the get_unaligned_be64() helper macro. [Jason: replace src[8] in original patch with src+8]
Publication Date	Aug. 8, 2024, 1:15 a.m.
Registration Date	Aug. 8, 2024, 5 a.m.
Last Update	Aug. 8, 2024, 11:52 p.m.

Affected software configurations

Related information, measures and tools

No	URL	タグ
1	https://git.kernel.org/stable/c/ae630de24efb123d7199a43256396d7758f4cb75	Patch
2	https://git.kernel.org/stable/c/b4764f0ad3d68de8a0b847c05f427afb86dd54e6	Patch
3	https://git.kernel.org/stable/c/217978a29c6ceca76d3c640bf94bdf50c268d801	Patch
4	https://git.kernel.org/stable/c/6638a203abad35fa636d59ac47bdbc4bc100fd74	Patch
5	https://git.kernel.org/stable/c/2fb34bf76431e831f9863cd59adc0bd1f67b0fbf	Patch
6	https://git.kernel.org/stable/c/948f991c62a4018fb81d85804eeab3029c6209f8	Patch

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-770	制限またはスロットリング無しのリソースの割り当て	https://cwe.mitre.org/data/definitions/770.html

JVN Vulnerability Information

Linux の Linux Kernel における制限またはスロットリング無しのリソースの割り当てに関する脆弱性

Title	Linux の Linux Kernel における制限またはスロットリング無しのリソースの割り当てに関する脆弱性
Summary	Linux の Linux Kernel には、制限またはスロットリング無しのリソースの割り当てに関する脆弱性が存在します。
Possible impacts	サービス運用妨害 (DoS) 状態にされる可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	July 5, 2024, midnight
Registration Date	Aug. 14, 2024, 1:41 p.m.
Last Update	Sept. 2, 2025, 11:15 a.m.

Affected System

Linux

Linux Kernel 5.11 以上 5.15.163 未満

Linux Kernel 5.16 以上 6.1.100 未満

Linux Kernel 5.6 以上 5.10.222 未満

Linux Kernel 6.2 以上 6.6.41 未満

Linux Kernel 6.7 以上 6.9.10 未満

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2024-42247	https://www.cve.org/CVERecord?id=CVE-2024-42247
National Vulnerability Database (NVD)
2	CVE-2024-42247	https://nvd.nist.gov/vuln/detail/CVE-2024-42247

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-770	https://cwe.mitre.org/data/definitions/770.html

ベンダー情報

No	Name	URL
Kernel.org git repositories
1	wireguard: allowedips: avoid unaligned 64-bit memory accesses (217978a)	https://git.kernel.org/stable/c/217978a29c6ceca76d3c640bf94bdf50c268d801
2	wireguard: allowedips: avoid unaligned 64-bit memory accesses (2fb34bf)	https://git.kernel.org/stable/c/2fb34bf76431e831f9863cd59adc0bd1f67b0fbf
3	wireguard: allowedips: avoid unaligned 64-bit memory accesses (6638a20)	https://git.kernel.org/stable/c/6638a203abad35fa636d59ac47bdbc4bc100fd74
4	wireguard: allowedips: avoid unaligned 64-bit memory accesses (948f991)	https://git.kernel.org/stable/c/948f991c62a4018fb81d85804eeab3029c6209f8
5	wireguard: allowedips: avoid unaligned 64-bit memory accesses (ae630de)	https://git.kernel.org/stable/c/ae630de24efb123d7199a43256396d7758f4cb75
6	wireguard: allowedips: avoid unaligned 64-bit memory accesses (b4764f0)	https://git.kernel.org/stable/c/b4764f0ad3d68de8a0b847c05f427afb86dd54e6
Linux Kernel
7	Linux Kernel Archives	https://www.kernel.org

その他

No	Name	URL
ICS-CERT ADVISORY
1	ICSA-25-226-07	https://www.cisa.gov/news-events/ics-advisories/icsa-25-226-07
JVN
2	JVNVU#92169998	https://jvn.jp/vu/JVNVU92169998/index.html

Change Log

No	Changed Details	Date of change
1	[2024年08月14日] 掲載	Aug. 14, 2024, 11:37 a.m.
2	[2025年08月18日] 参考情報：JVN (JVNVU#92169998) を追加参考情報：ICS-CERT ADVISORY (ICSA-25-226-07) を追加	Aug. 18, 2025, 5:21 p.m.