Resource management error in Linux kernel

#VU89397 Resource management error in Linux kernel

Published: 2024-05-13

Vulnerability identifier: #VU89397

Vulnerability risk: Medium

CVSSv3.1: 6.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2024-26640

CWE-ID: CWE-399

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system

Vendor: Linux Foundation

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to improper management of internal resources within the skb_advance_to_frag() function in net/ipv4/tcp.c. A remote attacker can send specially crafted data to the system and perform a denial of service (DoS) attack.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Linux kernel:

External links
http://git.kernel.org/stable/c/f48bf9a83b1666d934247cb58a9887d7b3127b6f
http://git.kernel.org/stable/c/718f446e60316bf606946f7f42367d691d21541e
http://git.kernel.org/stable/c/b383d4ea272fe5795877506dcce5aad1f6330e5e
http://git.kernel.org/stable/c/d15cc0f66884ef2bed28c7ccbb11c102aa3a0760
http://git.kernel.org/stable/c/1b8adcc0e2c584fec778add7777fe28e20781e60
http://git.kernel.org/stable/c/577e4432f3ac810049cb7e6b71f4d96ec7c6e894

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

openEuler 22.03 LTS SP3 update for kernel

openEuler 20.03 LTS SP4 update for kernel

openEuler 20.03 LTS SP1 update for kernel

Denial of service in Linux kernek TCP implementation