PT-2024-34089 · Linux+11 · Linux Kernel+11

Syzbot

·

Published

2024-10-25

·

Updated

2026-03-14

·

CVE-2024-50256

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.6.61
Description: A potential crash in the nf send reset6() function has been resolved. The issue occurs when dev->hard header len is zero, and an attempt is made to push an Ethernet header. The fix involves using LL MAX HEADER as in other functions in net/ipv6/netfilter/nf reject ipv6.c. A syzbot report was received without a repro, crashing in nf send reset6(). The crash is related to the skb under panic and skb panic functions in net/core/skbuff.c.
Recommendations: To resolve the issue, update the Linux kernel to version 6.6.61 or later. As a temporary workaround, consider disabling the nf send reset6() function until a patch is available. Restrict access to the vulnerable net/ipv6/netfilter/nf reject ipv6.c module to minimize the risk of exploitation. Avoid using the dev->hard header len variable in the affected API endpoints until the issue is resolved.

Exploit

Fix

Improper Resource Release

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-404

Related Identifiers

ALSA-2024:10943
ALSA-2024:10944
ALSA-2024_10943
ALSA-2024_10944
ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_16880
ALT-PU-2024-16040
ALT-PU-2024-17211
ALT-PU-2024-17891
ALT-PU-2025-12647
AZL-53250
AZL-53313
BDU:2025-07893
CESA-2024_10943
CESA-2024_10944
CVE-2024-50256
DLA-4008-1
DSA-5818-1
INFSA-2024_10943
INFSA-2024_10944
INFSA-2025_6966
MGASA-2024-0368
MGASA-2024-0369
OESA-2025-1097
OPENSUSE-SU-2024:14500-1
OPENSUSE-SU-2025:14705-1
OPENSUSE-SU-2025_0117-1
OPENSUSE-SU-2025_0153-1
OPENSUSE-SU-2025_0154-1
OPENSUSE-SU-2025_0201-1
OPENSUSE-SU-2025_0229-1
RHSA-2024:10943
RHSA-2024:10944
RHSA-2024_10943
RHSA-2024_10944
RHSA-2025:1658
RHSA-2025:6966
RHSA-2025_6966
RLSA-2024:10943
RLSA-2024:10944
SUSE-SU-2025:0117-1
SUSE-SU-2025:0153-1
SUSE-SU-2025:0154-1
SUSE-SU-2025:0201-1
SUSE-SU-2025:0201-2
SUSE-SU-2025:0229-1
SUSE-SU-2025:0236-1
SUSE-SU-2025:0289-1
SUSE-SU-2025:20165-1
SUSE-SU-2025:20166-1
SUSE-SU-2025:20248-1
SUSE-SU-2025:20249-1
SUSE-SU-2025_0201-1
SUSE-SU-2025_0201-2
SUSE-SU-2025_0236-1
USN-7276-1
USN-7277-1
USN-7310-1
USN-7449-1
USN-7449-2
USN-7450-1
USN-7451-1
USN-7452-1
USN-7453-1
USN-7455-1
USN-7455-2
USN-7455-3
USN-7455-4
USN-7455-5
USN-7459-1
USN-7459-2
USN-7460-1
USN-7461-1
USN-7461-2
USN-7461-3
USN-7462-1
USN-7462-2
USN-7463-1
USN-7468-1
USN-7475-1
USN-7496-1
USN-7496-2
USN-7496-3
USN-7496-4
USN-7496-5
USN-7506-1
USN-7506-2
USN-7506-3
USN-7506-4
USN-7523-1
USN-7524-1
USN-7539-1
USN-7540-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Debian
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu