#VU86576 Use-after-free in Linux kernel


Vulnerability identifier: #VU86576

Vulnerability risk: Low

CVSSv3.1: 7.7 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2024-0775

CWE-ID: CWE-416

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system

Vendor:

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the __ext4_remount() function in fs/ext4/super.c in ext4. A local user can trigger a use-after-free error and execute arbitrary code on the system.

Mitigation
Install update from vendor's website.

Vulnerable software versions

External links
http://access.redhat.com/security/cve/CVE-2024-0775
http://bugzilla.redhat.com/show_bug.cgi?id=2259414
http://scm.linefinity.com/common/linux-stable/commit/4c0b4818b1f636bc96359f7817a2d8bab6370162

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Multiple vulnerabilities in Dell Cloud Tiering Appliance
Multiple vulnerabilities in Dell Secure Connect Gateway Policy Manager
Multiple vulnerabilities in Dell Storage Resource Manager (SRM) and Dell Storage Monitoring and Reporting (SMR)
SUSE update for the Linux Kernel (Live Patch 12 for SLE 15 SP4)
SUSE update for the Linux Kernel (Live Patch 0 for SLE 15 SP5)
SUSE update for the Linux Kernel (Live Patch 39 for SLE 15 SP2)
SUSE update for the Linux Kernel (Live Patch 39 for SLE 15 SP3)
SUSE update for the Linux Kernel (Live Patch 40 for SLE 15 SP3)
SUSE update for the Linux Kernel (Live Patch 36 for SLE 15 SP3)
SUSE update for the Linux Kernel (Live Patch 43 for SLE 15 SP2)