PT-2024-33981 · Linux+3 · Linux Kernel+3

Published

2024-10-02

Updated

2025-09-29

CVE-2024-50149

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified)

Description: A use-after-free issue has been resolved in the Linux kernel. The problem occurs when freeing a job in TDR, which is not safe because TDR can pass the run job thread, resulting in a use-after-free (UAF) condition. It is only safe for the job to be freed naturally by the scheduler. To address this, instead of freeing the job in TDR, it is added to a pending list.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALSA-2025_16880

ALT-PU-2024-17211

BDU:2025-13906

CVE-2024-50149

OPENSUSE-SU-2024:14500-1

OPENSUSE-SU-2025:14705-1

USN-7276-1

USN-7277-1

USN-7310-1

Affected Products

Alt Linux

Linuxmint

Linux Kernel

Ubuntu

PT-2024-33981 · Linux+3 · Linux Kernel+3

CVE-2024-50149

Weakness Enumeration

Related Identifiers

Affected Products

References · 1293