#VU90149 Use-after-free in Linux kernel


Published: 2024-05-31

Vulnerability identifier: #VU90149

Vulnerability risk: Medium

CVSSv3.1: 5 [AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2024-35864

CWE-ID: CWE-416

Exploitation vector: Local network

Exploit availability: No

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system

Vendor: Linux Foundation

Description

The vulnerability allows a remote non-authenticated attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a use-after-free error within the smb2_is_valid_lease_break() function in fs/smb/client/smb2misc.c. A remote non-authenticated attacker can perform a denial of service (DoS) attack.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Linux kernel:

External links
http://git.kernel.org/stable/c/c868cabdf6fdd61bea54532271f4708254e57fc5
http://git.kernel.org/stable/c/f92739fdd4522c4291277136399353d7c341fae4
http://git.kernel.org/stable/c/a8344e2b69bde63f713b0aa796d70dbeadffddfb
http://git.kernel.org/stable/c/705c76fbf726c7a2f6ff9143d4013b18daaaebf1

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


SUSE update for the Linux Kernel
SUSE update for the Linux Kernel
Ubuntu update for linux-oracle
Ubuntu update for linux-aws
SUSE update for the Linux Kernel
SUSE update for the Linux Kernel
Ubuntu update for linux-gke
SUSE update for the Linux Kernel
Ubuntu update for linux
SUSE update for the Linux Kernel