PT-2024-21605 · Linux+5 · Linux Kernel+5

Qiang Zhang

Published

2024-04-14

Updated

2026-05-26

CVE-2024-26983

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.37

Description A vulnerability in the Linux kernel has been resolved, related to the bootconfig feature. The issue occurs when freeing xbc memory in the xbc exit() function, where memblock may have already handed over memory to the buddy allocator. This can cause use-after-free (UAF) bugs on architectures with CONFIG ARCH KEEP MEMBLOCK disabled, such as x86. The patch fixes this problem by calling memblock free() in the early xbc init error rewind path and memblock free late() in the xbc exit path to free memory to the buddy allocator.

Recommendations To resolve this issue, update the Linux kernel to version 6.6.37 or later. If updating is not possible, consider temporarily disabling the bootconfig feature or restricting access to the vulnerable memory area until a patch can be applied.

Exploit

Fix

DoS

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

AZL-54584

BDU:2025-06992

CVE-2024-26983

DSA-5680-1

MGASA-2024-0263

MGASA-2024-0266

SUSE-SU-2024:2135-1

SUSE-SU-2024:2203-1

SUSE-SU-2024:2973-1

SUSE-SU-2025:20008-1

SUSE-SU-2025:20028-1

SUSE-SU-2025:20166-1

SUSE-SU-2025:20249-1

USN-6893-1

USN-6893-2

USN-6893-3

USN-6918-1

Affected Products

Astra Linux

Linuxmint

Linux Kernel

Red Os

Suse

Ubuntu

PT-2024-21605 · Linux+5 · Linux Kernel+5

CVE-2024-26983

Weakness Enumeration

Related Identifiers

Affected Products

References · 3010