#VU96869 Use of uninitialized resource in Linux kernel - CVE-2024-44983


Vulnerability identifier: #VU96869

Vulnerability risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-44983

CWE-ID: CWE-908

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system

Vendor: Linux Foundation

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to use of uninitialized resource within the nf_flow_skb_encap_protocol() function in net/netfilter/nf_flow_table_ip.c, within the nf_flow_offload_inet_hook() function in net/netfilter/nf_flow_table_inet.c. A local user can perform a denial of service (DoS) attack.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Linux kernel: All versions

External links
https://git.kernel.org/stable/c/c05155cc455785916164aa5e1b4605a2ae946537
https://git.kernel.org/stable/c/d9384ae7aec46036d248d1c2c2757e471ab486c3
https://git.kernel.org/stable/c/0279c35d242d037abeb73d60d06a6d1bb7f672d9
https://git.kernel.org/stable/c/043a18bb6cf16adaa2f8642acfde6e8956a9caaa
https://git.kernel.org/stable/c/6ea14ccb60c8ab829349979b22b58a941ec4a3ee

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Ubuntu update for linux-azure-5.15
Ubuntu update for linux-azure
Ubuntu update for linux-hwe-6.8
openEuler 24.03 LTS update for kernel
Ubuntu update for linux
Ubuntu update for linux-nvidia
Ubuntu update for linux-gkeop
Ubuntu update for linux-intel-iotg
Ubuntu update for linux-azure
Ubuntu update for linux-aws