PT-2024-1293 · Linux+9 · Linux Kernel+9

Chenyuan

+5

·

Published

2024-01-23

·

Updated

2026-05-12

·

CVE-2024-23848

CVSS v2.0

6.8

Medium

VectorAV:L/AC:L/Au:S/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Linux kernel versions through 6.7.1
Description The issue is related to a use-after-free in the cec queue msg fh function, which is associated with the files cec-adap.c and cec-api.c in the drivers/media/cec/core directory. This problem is also linked to the rds recv track latency function. The exploitation of this issue may allow an attacker to impact the confidentiality, integrity, and availability of protected information.
Recommendations For Linux kernel versions through 6.7.1, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Use After Free

Weakness Enumeration

CWE-416

Related Identifiers

ALSA-2024:7000
ALSA-2024:7001
ALT-PU-2024-10855
ALT-PU-2024-1867
ALT-PU-2025-12647
AZL-33966
AZL-34877
BDU:2024-00732
CESA-2024_7000
CESA-2024_7001
CVE-2024-23848
INFSA-2024_7000
INFSA-2024_7001
INFSA-2024_9315
OESA-2024-1835
OPENSUSE-SU-2024_1641-1
OPENSUSE-SU-2024_1644-1
OPENSUSE-SU-2024_1659-1
OPENSUSE-SU-2024_1663-1
RHSA-2024:7000
RHSA-2024:7001
RHSA-2024:9315
RHSA-2024_7000
RHSA-2024_7001
RHSA-2024_9315
RHSA-2025:3510
RLSA-2024:7001
SUSE-SU-2024:1641-1
SUSE-SU-2024:1643-1
SUSE-SU-2024:1644-1
SUSE-SU-2024:1646-1
SUSE-SU-2024:1647-1
SUSE-SU-2024:1659-1
SUSE-SU-2024:1663-1
SUSE-SU-2024:1870-1
SUSE-SU-2024:2135-1
SUSE-SU-2024:2203-1
SUSE-SU-2024:2973-1
SUSE-SU-2025:20008-1
SUSE-SU-2025:20028-1
USN-6999-1
USN-6999-2
USN-7004-1
USN-7005-1
USN-7005-2
USN-7007-1
USN-7007-2
USN-7007-3
USN-7008-1
USN-7009-1
USN-7009-2
USN-7019-1
USN-7029-1
USN-7342-1
USN-7344-1
USN-7344-2
USN-7391-1
USN-7392-1
USN-7392-2
USN-7392-3
USN-7392-4
USN-7393-1
USN-7401-1
USN-7413-1
USN-7463-1
USN-7539-1
USN-7540-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Rocky Linux
Suse
Ubuntu