PT-2024-32230 · Linux+7 · Linux Kernel+7
Syzbot
·
Published
2024-09-05
·
Updated
2025-09-29
·
CVE-2024-46828
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel (affected versions not specified)
Description
The issue is related to the bulk flow accounting logic in the sch cake component of the Linux kernel. When the host fairness mode is disabled, a hash collision can cause a spurious decrement of the bulk flow counters, leading to a wrap-around and potentially causing an array overflow when the host fairness mode is re-enabled. This can happen when a hash collision occurs, and the state of the hash bucket is updated to match the new packet that collided. The patch fixes the issue by introducing a conditional check on decrement, similar to the one used on increment.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Out of bounds Read
Integer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Alt Linux
Astra Linux
Linuxmint
Linux Kernel
Red Hat
Red Os
Suse
Ubuntu