#VU91364 Information disclosure in Linux kernel - CVE-2024-26864

Cybersecurity Help s.r.o.

Published: 2024-06-08

Vulnerability identifier: #VU91364

Vulnerability risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26864

CWE-ID: CWE-200

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system

Vendor: Linux Foundation

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to information disclosure within the sock_prot_inuse_add() function in net/ipv4/inet_hashtables.c. A local user can gain access to sensitive information.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Linux kernel: All versions

External links
https://git.kernel.org/stable/c/86d9b040421bbd26425f5a3edc226f57ecdecbfe
https://git.kernel.org/stable/c/856baaa100cd288d3685eedae9a129c996e7e755
https://git.kernel.org/stable/c/1b20e61d36f490319d3fbdedd410155232ab5190
https://git.kernel.org/stable/c/ad105cde6b261b8b05ec872fe7d1987417d7fe5a
https://git.kernel.org/stable/c/04d9d1fc428ac9f581d55118d67e0cb546701feb

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Dell SmartFabric Manager update for third-party components

SUSE update for the Linux Kernel

Ubuntu update for linux-oracle

Ubuntu update for linux-azure

Ubuntu update for linux-oem-6.8

Ubuntu update for linux

Information disclosure in Linux kernel ipv4