PT-2024-29176 · Linux+10 · Linux Kernel+10
Syzbot
·
Published
2024-06-14
·
Updated
2025-09-29
·
CVE-2024-40961
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions prior to 6.10.0-rc2-syzkaller-00249-gbe27b8965297
Description
A vulnerability in the Linux kernel has been resolved, which prevents a possible NULL pointer dereference in the
fib6 nh init() function. The issue occurs because in6 dev get() can return NULL, and this return value is not properly checked. This can lead to a general protection fault, likely due to a non-canonical address. The vulnerability is related to the IPv6 routing code and can be triggered through the ipv6 route ioctl() function.Recommendations
To resolve this issue, update the Linux kernel to a version that includes the fix for this vulnerability. Specifically, versions prior to 6.10.0-rc2-syzkaller-00249-gbe27b8965297 are affected. As a temporary workaround, consider disabling the
fib6 nh init() function until a patch is available. However, this may have unintended consequences on IPv6 routing functionality.At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
NULL Pointer Dereference
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu