Use-after-free in Linux kernel

Vulnerability identifier: #VU90199

Vulnerability risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26872

CWE-ID: CWE-416

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system

Vendor: Linux Foundation

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the srpt_add_one() function in drivers/infiniband/ulp/srpt/ib_srpt.c. A local user can escalate privileges on the system.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Linux kernel: All versions

External links
https://git.kernel.org/stable/c/bdd895e0190c464f54f84579e7535d80276f0fc5
https://git.kernel.org/stable/c/6413e78086caf7bf15639923740da0d91fdfd090
https://git.kernel.org/stable/c/e362d007294955a4fb929e1c8978154a64efdcb6
https://git.kernel.org/stable/c/85570b91e4820a0db9d9432098778cafafa7d217
https://git.kernel.org/stable/c/7104a00fa37ae898a827381f1161fa3286c8b346
https://git.kernel.org/stable/c/ec77fa12da41260c6bf9e060b89234b980c5130f
https://git.kernel.org/stable/c/c21a8870c98611e8f892511825c9607f1e2cd456

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

#VU90199 Use-after-free in Linux kernel - CVE-2024-26872

Q & A

Latest bulletins with this vulnerability