PT-2024-1851 · Linux+4 · Linux Kernel+4

Published

2024-01-14

Updated

2024-08-27

CVE-2024-26592

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to a use-after-free (UAF) problem in the ksmbd tcp new connection() function. This function is part of the Linux kernel's implementation of the Server Message Block (SMB) protocol. The vulnerability arises from a race condition between the handling of new TCP connections and their disconnection, leading to the use of memory after it has been freed. This can potentially allow an attacker to impact the confidentiality, integrity, and availability of protected information. The estimated number of potentially affected devices and details about real-world incidents are not provided.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Use After Free

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416CWE-362

Related Identifiers

BDU:2024-01606

CVE-2024-26592

OESA-2024-1765

OESA-2024-1768

USN-6688-1

USN-6765-1

USN-6766-1

USN-6766-2

USN-6766-3

USN-6795-1

USN-6818-1

USN-6818-2

USN-6818-3

USN-6818-4

USN-6819-1

USN-6819-2

USN-6819-3

USN-6819-4

USN-6828-1

ZDI-24-195

Affected Products

Astra Linux

Linuxmint

Linux Kernel

Red Os

Ubuntu

PT-2024-1851 · Linux+4 · Linux Kernel+4

CVE-2024-26592

Weakness Enumeration

Related Identifiers

Affected Products

References · 494