PT-2024-26949 · Linux+5 · Linux Kernel+5

Rahul Rameshbabu

Published

2024-05-22

Updated

2025-09-29

CVE-2024-36281

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.37

Description The issue is related to a NULL pointer dereference in the Linux kernel, specifically in the net/mlx5 module. The mlx5 modify header dealloc call leads to this dereference, and a leak in the rules also occurred due to two rules being populated related to status. This results in a kernel NULL pointer dereference. The vulnerability is resolved by using mlx5 ipsec rx status destroy to correctly delete status rules.

Recommendations To resolve the issue, update the Linux kernel to version 6.6.37 or later. As a temporary workaround, consider disabling the mlx5 modify header dealloc function until a patch is available. Restrict access to the vulnerable module net/mlx5 to minimize the risk of exploitation. Avoid using the rx create function with the modify hdr instance until the issue is resolved.

Exploit

Fix

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

ALSA-2025_16880

ALT-PU-2024-13979

BDU:2025-03059

CVE-2024-36281

MGASA-2024-0263

MGASA-2024-0266

OESA-2024-2076

SUSE-SU-2024:2571-1

SUSE-SU-2024:2896-1

SUSE-SU-2024:2973-1

SUSE-SU-2025:20008-1

SUSE-SU-2025:20028-1

USN-6999-1

USN-6999-2

USN-7004-1

USN-7005-1

USN-7005-2

USN-7008-1

USN-7029-1

Affected Products

Alt Linux

Astra Linux

Linuxmint

Linux Kernel

Suse

Ubuntu

PT-2024-26949 · Linux+5 · Linux Kernel+5

CVE-2024-36281

Weakness Enumeration

Related Identifiers

Affected Products

References · 2318