CVE-2024-44986

HIGH EPSS 14.6%
Published Sep 4, 20241y ago · Modified Jun 17, 20261w ago
7.8 CVSS 3.1
High
Find Similar
Published Sep 4, 2024 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: ipv6: fix possible UAF in ip6_finish_output2() If skb_expand_head() returns NULL, skb has been freed and associated dst/idev could also have been freed. We need to hold rcu_read_lock() to make sure the dst and associated idev are alive.

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
14.6% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-416 Use After Free Memory Safety

Affected Products 11

VendorProductVersionRange
debiandebian_linux11.0any
linuxlinux_kernel*≥5.4.137  –  <5.4.289
linuxlinux_kernel*≥5.10.55  –  <5.10.233
linuxlinux_kernel*≥5.13.7  –  <5.15.166
linuxlinux_kernel*≥5.16  –  <6.1.107
linuxlinux_kernel*≥6.2  –  <6.6.48
linuxlinux_kernel*≥6.7  –  <6.10.7
linuxlinux_kernel6.11any
linuxlinux_kernel6.11any
linuxlinux_kernel6.11any
linuxlinux_kernel6.11any

References 6

  • git.kernel.org https://git.kernel.org/stable/c/3574d28caf9a09756ae87ad1ea096c6f47b6101e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/56efc253196751ece1fc535a5b582be127b0578a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6ab6bf731354a6fdbaa617d1ec194960db61cf3b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/da273b377ae0d9bd255281ed3c2adb228321687b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e891b36de161fcd96f12ff83667473e5067b9037
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
    Mailing ListThird Party Advisory

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/3574d28caf9a09756ae87ad1ea096c6f47b6101e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/56efc253196751ece1fc535a5b582be127b0578a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6ab6bf731354a6fdbaa617d1ec194960db61cf3b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/da273b377ae0d9bd255281ed3c2adb228321687b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e891b36de161fcd96f12ff83667473e5067b9037
    Patch