PT-2024-9288 · Linux+6 · Linux Kernel+6

Publicado

2024-08-20

·

Atualizado

2025-09-29

·

CVE-2024-43861

CVSS v3.1

5.5

Média

VetorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Nome do software vulnerável e versões afetadas:
Versões do kernel Linux anteriores à 6.6.50
Descrição:
O problema está relacionado a um vazamento de memória no componente qmi wwan do kernel Linux. Esse vazamento ocorre quando pacotes não IP chegam e o skb não utilizado não é liberado. A exploração dessa vulnerabilidade poderia permitir que um invasor causasse uma negação de serviço.
Recomendações:
Para versões do kernel Linux anteriores à 6.6.50, atualize para a versão 6.6.50 ou posterior para resolver o problema. Como solução temporária, considere restringir o uso do componente qmi wwan até que um patch esteja disponível.

Exploit

Correção

Memory Leak

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-401

Identificadores relacionados

ALSA-2025_16880
ALT-PU-2024-11345
ALT-PU-2024-11855
ALT-PU-2024-11863
ALT-PU-2024-12232
ALT-PU-2024-12537
ALT-PU-2024-13121
ALT-PU-2024-13979
ALT-PU-2024-14046
AZL-48498
BDU:2024-10976
CVE-2024-43861
DLA-3912-1
DLA-4008-1
MGASA-2024-0309
MGASA-2024-0310
OESA-2024-2076
OESA-2024-2077
OESA-2024-2078
OESA-2024-2079
OESA-2024-2080
OPENSUSE-SU-2024_3190-1
OPENSUSE-SU-2024_3209-1
OPENSUSE-SU-2024_3249-1
OPENSUSE-SU-2024_3408-1
OPENSUSE-SU-2024_3483-1
OPENSUSE-SU-2024_4120-1
OPENSUSE-SU-2024_4122-1
OPENSUSE-SU-2024_4123-1
OPENSUSE-SU-2024_4124-1
OPENSUSE-SU-2024_4125-1
OPENSUSE-SU-2024_4127-1
OPENSUSE-SU-2024_4128-1
OPENSUSE-SU-2024_4141-1
OPENSUSE-SU-2024_4160-1
OPENSUSE-SU-2024_4161-1
OPENSUSE-SU-2024_4177-1
OPENSUSE-SU-2024_4179-1
OPENSUSE-SU-2024_4180-1
OPENSUSE-SU-2024_4206-1
OPENSUSE-SU-2024_4207-1
OPENSUSE-SU-2024_4208-1
OPENSUSE-SU-2024_4209-1
OPENSUSE-SU-2024_4210-1
OPENSUSE-SU-2024_4214-1
OPENSUSE-SU-2024_4216-1
OPENSUSE-SU-2024_4217-1
OPENSUSE-SU-2024_4218-1
OPENSUSE-SU-2024_4220-1
OPENSUSE-SU-2024_4227-1
OPENSUSE-SU-2024_4228-1
OPENSUSE-SU-2024_4230-1
OPENSUSE-SU-2024_4234-1
OPENSUSE-SU-2024_4235-1
OPENSUSE-SU-2024_4236-1
OPENSUSE-SU-2024_4237-1
OPENSUSE-SU-2024_4240-1
OPENSUSE-SU-2024_4243-1
OPENSUSE-SU-2024_4246-1
OPENSUSE-SU-2024_4256-1
OPENSUSE-SU-2024_4262-1
OPENSUSE-SU-2024_4264-1
OPENSUSE-SU-2024_4265-1
OPENSUSE-SU-2024_4266-1
OPENSUSE-SU-2024_4268-1
OPENSUSE-SU-2024_4275-1
OPENSUSE-SU-2024_4276-1
OPENSUSE-SU-2025_0101-1
OPENSUSE-SU-2025_0105-1
OPENSUSE-SU-2025_0106-1
OPENSUSE-SU-2025_0107-1
OPENSUSE-SU-2025_0109-1
OPENSUSE-SU-2025_0110-1
OPENSUSE-SU-2025_0111-1
OPENSUSE-SU-2025_0114-1
OPENSUSE-SU-2025_0115-1
OPENSUSE-SU-2025_0124-1
OPENSUSE-SU-2025_0131-1
OPENSUSE-SU-2025_0132-1
OPENSUSE-SU-2025_0137-1
OPENSUSE-SU-2025_0138-1
OPENSUSE-SU-2025_0146-1
OPENSUSE-SU-2025_0150-1
OPENSUSE-SU-2025_0158-1
OPENSUSE-SU-2025_0164-1
OPENSUSE-SU-2025_0168-1
OPENSUSE-SU-2025_0172-1
OPENSUSE-SU-2025_0181-1
OPENSUSE-SU-2025_0187-1
OPENSUSE-SU-2025_0188-1
OPENSUSE-SU-2025_0238-1
OPENSUSE-SU-2025_0239-1
OPENSUSE-SU-2025_0240-1
OPENSUSE-SU-2025_0243-1
OPENSUSE-SU-2025_0244-1
OPENSUSE-SU-2025_0245-1
OPENSUSE-SU-2025_0248-1
OPENSUSE-SU-2025_0249-1
OPENSUSE-SU-2025_0251-1
OPENSUSE-SU-2025_0252-1
OPENSUSE-SU-2025_0253-1
OPENSUSE-SU-2025_0254-1
OPENSUSE-SU-2025_0255-1
OPENSUSE-SU-2025_0260-1
OPENSUSE-SU-2025_0261-1
OPENSUSE-SU-2025_0262-1
OPENSUSE-SU-2025_0264-1
OPENSUSE-SU-2025_0265-1
OPENSUSE-SU-2025_0266-1
SUSE-SU-2024:3189-1
SUSE-SU-2024:3190-1
SUSE-SU-2024:3194-1
SUSE-SU-2024:3195-1
SUSE-SU-2024:3209-1
SUSE-SU-2024:3225-1
SUSE-SU-2024:3227-1
SUSE-SU-2024:3249-1
SUSE-SU-2024:3251-1
SUSE-SU-2024:3252-1
SUSE-SU-2024:3383-1
SUSE-SU-2024:3408-1
SUSE-SU-2024:3483-1
SUSE-SU-2024:3499-1
SUSE-SU-2024:4120-1
SUSE-SU-2024:4122-1
SUSE-SU-2024:4123-1
SUSE-SU-2024:4124-1
SUSE-SU-2024:4125-1
SUSE-SU-2024:4127-1
SUSE-SU-2024:4128-1
SUSE-SU-2024:4129-1
SUSE-SU-2024:4139-1
SUSE-SU-2024:4141-1
SUSE-SU-2024:4160-1
SUSE-SU-2024:4161-1
SUSE-SU-2024:4170-1
SUSE-SU-2024:4177-1
SUSE-SU-2024:4179-1
SUSE-SU-2024:4180-1
SUSE-SU-2024:4195-1
SUSE-SU-2024:4197-1
SUSE-SU-2024:4206-1
SUSE-SU-2024:4207-1
SUSE-SU-2024:4208-1
SUSE-SU-2024:4209-1
SUSE-SU-2024:4210-1
SUSE-SU-2024:4214-1
SUSE-SU-2024:4216-1
SUSE-SU-2024:4217-1
SUSE-SU-2024:4218-1
SUSE-SU-2024:4219-1
SUSE-SU-2024:4220-1
SUSE-SU-2024:4221-1
SUSE-SU-2024:4226-1
SUSE-SU-2024:4227-1
SUSE-SU-2024:4228-1
SUSE-SU-2024:4230-1
SUSE-SU-2024:4231-1
SUSE-SU-2024:4234-1
SUSE-SU-2024:4235-1
SUSE-SU-2024:4236-1
SUSE-SU-2024:4237-1
SUSE-SU-2024:4239-1
SUSE-SU-2024:4240-1
SUSE-SU-2024:4241-1
SUSE-SU-2024:4242-1
SUSE-SU-2024:4243-1
SUSE-SU-2024:4246-1
SUSE-SU-2024:4247-1
SUSE-SU-2024:4248-1
SUSE-SU-2024:4249-1
SUSE-SU-2024:4250-1
SUSE-SU-2024:4256-1
SUSE-SU-2024:4261-1
SUSE-SU-2024:4262-1
SUSE-SU-2024:4263-1
SUSE-SU-2024:4264-1
SUSE-SU-2024:4265-1
SUSE-SU-2024:4266-1
SUSE-SU-2024:4268-1
SUSE-SU-2024:4275-1
SUSE-SU-2024:4276-1
SUSE-SU-2025:0084-1
SUSE-SU-2025:0089-1
SUSE-SU-2025:0090-1
SUSE-SU-2025:0091-1
SUSE-SU-2025:0097-1
SUSE-SU-2025:0101-1
SUSE-SU-2025:0103-1
SUSE-SU-2025:0105-1
SUSE-SU-2025:0106-1
SUSE-SU-2025:0107-1
SUSE-SU-2025:0109-1
SUSE-SU-2025:0110-1
SUSE-SU-2025:0111-1
SUSE-SU-2025:0114-1
SUSE-SU-2025:0115-1
SUSE-SU-2025:0124-1
SUSE-SU-2025:0131-1
SUSE-SU-2025:0132-1
SUSE-SU-2025:0137-1
SUSE-SU-2025:0138-1
SUSE-SU-2025:0146-1
SUSE-SU-2025:0150-1
SUSE-SU-2025:0158-1
SUSE-SU-2025:0164-1
SUSE-SU-2025:0168-1
SUSE-SU-2025:0172-1
SUSE-SU-2025:0181-1
SUSE-SU-2025:0187-1
SUSE-SU-2025:0188-1
SUSE-SU-2025:0238-1
SUSE-SU-2025:0239-1
SUSE-SU-2025:0240-1
SUSE-SU-2025:0243-1
SUSE-SU-2025:0244-1
SUSE-SU-2025:0245-1
SUSE-SU-2025:0248-1
SUSE-SU-2025:0249-1
SUSE-SU-2025:0251-1
SUSE-SU-2025:0252-1
SUSE-SU-2025:0253-1
SUSE-SU-2025:0254-1
SUSE-SU-2025:0255-1
SUSE-SU-2025:0260-1
SUSE-SU-2025:0261-1
SUSE-SU-2025:0262-1
SUSE-SU-2025:0264-1
SUSE-SU-2025:0265-1
SUSE-SU-2025:0266-1
SUSE-SU-2025:0269-1
SUSE-SU-2025:20044-1
SUSE-SU-2025:20047-1
USN-7088-1
USN-7088-2
USN-7088-3
USN-7088-4
USN-7088-5
USN-7100-1
USN-7100-2
USN-7119-1
USN-7123-1
USN-7144-1
USN-7154-1
USN-7154-2
USN-7155-1
USN-7156-1
USN-7194-1
USN-7196-1

Produtos afetados

Alt Linux
Astra Linux
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu