CVE-2024-44935

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.50

Description The issue is related to a null pointer dereference in the reuseport add sock() function. This occurs when two sockets concurrently call listen() and one of them is closed, causing the sk reuseport cb to be cleared. The problem arises because SCTP does not properly synchronize reuseport alloc(), reuseport add sock(), and reuseport detach sock(). To fix this, a locking strategy is applied to sctp hash endpoint() and sctp unhash endpoint(). The estimated number of potentially affected devices is not specified.

Recommendations To resolve the issue, update the Linux kernel to version 6.6.50 or later. If updating is not possible, consider applying the locking strategy to sctp hash endpoint() and sctp unhash endpoint() as a temporary workaround. However, this should be done with caution and only by experienced developers, as it may introduce other issues. Restricting access to the vulnerable reuseport add sock() function can also be considered as a temporary mitigation measure until a patch is available.