PT-2024-10005 · Linux+6 · Linux Kernel+6
Kuniyuki Iwashima
·
Published
2024-11-03
·
Updated
2026-05-26
·
CVE-2024-53095
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions prior to 6.6.65
Description
The issue is related to a use-after-free vulnerability in the Linux kernel's SMB client, specifically in the
generic ip connect() function. This vulnerability can be exploited to impact the confidentiality, integrity, and availability of protected information. The problem occurs when the CIFS (Common Internet File System) protocol is used to reconnect to a server in a non-root network namespace, leading to a potential use-after-free error. The root cause is incorrect reference counting for the network namespace.Technical details about exploitation include:
- API Endpoints: Not specified
- Vulnerable Parameters or Variables: Not specified
- Function Names:
generic ip connect(),cifs put tcp session(),clean demultiplex info()
The estimated number of potentially affected devices worldwide is not provided. There is no information about real-world incidents where this issue was exploited.
Recommendations
For Linux kernel versions prior to 6.6.65, update to version 6.6.65 or later to resolve the issue.
As a temporary workaround, consider restricting the use of the CIFS protocol in non-root network namespaces until a patch is available.
Exploit
Fix
DoS
Use After Free
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Debian
Linuxmint
Linux Kernel
Red Hat
Suse
Ubuntu