CVE-2024-43878

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.10.2

Description The issue is related to a misconfiguration of the input state slow path in the Linux kernel, which causes a KASAN report error. This error occurs due to a wild-memory-access in the xfrmi rcv cb function. The vulnerability can potentially lead to a local network compromise.

Recommendations To resolve the issue, update the Linux kernel to version 6.10.2 or later. If updating is not possible, consider applying patches or configuration changes to mitigate the risk of exploitation. However, the exact mitigation measures are not specified in the provided input descriptions.