#VU94949 Use-after-free in Linux kernel - CVE-2024-41040
Vulnerability identifier: #VU94949
Vulnerability risk: Low
CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-41040
CWE-ID:
CWE-416
Exploitation vector: Local
Exploit availability: No
Vulnerable software:
Linux kernel
Operating systems & Components /
Operating system
Vendor: Linux Foundation
Description
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the net/sched/act_ct.c. A local user can escalate privileges on the system.
Mitigation
Install update from vendor's website.
Vulnerable software versions
Linux kernel: All versions
External links
https://git.kernel.org/stable/c/b81a523d54ea689414f67c9fb81a5b917a41ed55
https://git.kernel.org/stable/c/2b4d68df3f57ea746c430941ba9c03d7d8b5a23f
https://git.kernel.org/stable/c/4e71b10a100861fb27d9c5755dfd68f615629fae
https://git.kernel.org/stable/c/799a34901b634008db4a7ece3900e2b971d4c932
https://git.kernel.org/stable/c/ef472cc6693b16b202a916482df72f35d94bd69e
https://git.kernel.org/stable/c/26488172b0292bed837b95a006a3f3431d1898c3
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
