#VU98856 Memory leak in Linux kernel - CVE-2024-47728


Vulnerability identifier: #VU98856

Vulnerability risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-47728

CWE-ID: CWE-401

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system

Vendor: Linux Foundation

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the BPF_CALL_5() function in net/core/filter.c, within the BPF_CALL_4() function in kernel/bpf/syscall.c, within the BPF_CALL_4() function in kernel/bpf/helpers.c. A local user can perform a denial of service (DoS) attack.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Linux kernel: All versions

External links
https://git.kernel.org/stable/c/8397bf78988f3ae9dbebb0200189a62a57264980
https://git.kernel.org/stable/c/a634fa8e480ac2423f86311a602f6295df2c8ed0
https://git.kernel.org/stable/c/599d15b6d03356a97bff7a76155c5604c42a2962
https://git.kernel.org/stable/c/594a9f5a8d2de2573a856e506f77ba7dd2cefc6a
https://git.kernel.org/stable/c/4b3786a6c5397dc220b1483d8e2f4867743e966f

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Ubuntu update for linux-azure-6.8
Ubuntu update for linux-azure
Ubuntu update for linux-hwe-6.8
Ubuntu update for linux-ibm
Ubuntu update for linux-oem-6.8
Dell SmartFabric Manager update for third-party components
Ubuntu update for linux-gcp-6.8
Ubuntu update for linux-aws
Ubuntu update for linux-oem-6.11
Ubuntu update for linux-oracle