CVE-2024-41074

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.43

Description The issue arises when the copen function is maliciously called in user mode, potentially deleting a request corresponding to a random id before it has been read. If the object is set to reopen, the open request will be done with the still reopen state, causing the request to be skipped in the select req function. As a result, the read request is never completed and blocks other processes. This can occur when the ondemand id is less than 0.

Recommendations To resolve the issue, update to Linux kernel version 6.6.43 or later. As a temporary workaround, consider disabling the copen function until a patch is available. Restrict access to the cachefiles module to minimize the risk of exploitation. Avoid using the ondemand id parameter in the affected kernel functions until the issue is resolved.

Exploit

Fix

DoS

Improper Locking

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-667CWE-416

Related Identifiers

BDU:2025-08040

CVE-2024-41074

DLA-4008-1

MGASA-2024-0277

MGASA-2024-0278

OESA-2024-1960

SUSE-SU-2024:3194-1

SUSE-SU-2024:3195-1

SUSE-SU-2024:3383-1

SUSE-SU-2025:20044-1

SUSE-SU-2025:20047-1

USN-7089-1

USN-7089-2

USN-7089-3

USN-7089-4

USN-7089-5

USN-7089-6

USN-7089-7

USN-7090-1

USN-7095-1

USN-7156-1

Affected Products

Astra Linux

Debian

Linuxmint

Linux Kernel

Red Os

Suse

Ubuntu

CVE-2024-41074

Weakness Enumeration

Related Identifiers

Affected Products

References · 1637