PT-2024-3383 · Linux+9 · Linux Kernel+9
Zhangpeng
·
Published
2024-01-29
·
Updated
2025-09-29
·
CVE-2024-26640
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions:
Linux kernel (affected versions not specified)
Description:
The issue is related to the Linux kernel's TCP rx zerocopy functionality, which is intended to map pages initially allocated from NIC drivers, not pages owned by a file system. A patch has been added to include additional checks in the
can map frag() function to prevent potential issues, such as panics reported by ZhangPeng. The vulnerability could be exploited by an attacker to cause a denial of service. Technical details about exploitation include the use of sendfile() to map pages owned by an ext4 file to TCP rx zerocopy.Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Almalinux
Astra Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu