CVE-2024-44973

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been resolved, related to the freeing of kfence objects. The issue occurred when the freeing of these objects was moved from deep inside do slab free to the wrapper functions outside, but unfortunately, it missed one spot in kmem cache free bulk. This results in a crash, with a padding overwritten error. The crash is related to the skbuff head cache and involves functions such as slab err, free to partial list, slab pad check, check slab, kmem cache alloc bulk, and napi build skb. To avoid the crash, a kfence free check needs to be added in kmem cache free bulk.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.