PT-2024-3843 · Linux+7 · Linux Kernel+7
Paulo Alcantara
·
Published
2024-04-03
·
Updated
2026-03-14
·
CVE-2024-35864
CVSS v3.1
7.8
High
| Base vector | Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel (affected versions not specified)
Description
The issue is related to a potential use-after-free (UAF) vulnerability in the
smb2 is valid lease break() function. This vulnerability can be exploited to cause a denial of service. The vulnerability is resolved by skipping sessions that are being torn down to avoid UAF.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
DoS
Use After Free
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_16880
AZL-54687
BDU:2024-04223
CVE-2024-35864
INFSA-2024_9315
LSN-0111-1
LSN-0112-1
OPENSUSE-SU-2024_2362-1
OPENSUSE-SU-2024_2372-1
OPENSUSE-SU-2024_2394-1
OPENSUSE-SU-2024_3774-1
OPENSUSE-SU-2024_3777-1
OPENSUSE-SU-2024_3780-1
OPENSUSE-SU-2024_3783-1
OPENSUSE-SU-2024_3793-1
OPENSUSE-SU-2024_3797-1
OPENSUSE-SU-2024_3798-1
OPENSUSE-SU-2024_3799-1
OPENSUSE-SU-2024_3804-1
OPENSUSE-SU-2024_3805-1
OPENSUSE-SU-2024_3806-1
OPENSUSE-SU-2024_3814-1
OPENSUSE-SU-2024_3815-1
OPENSUSE-SU-2024_3824-1
OPENSUSE-SU-2024_3829-1
OPENSUSE-SU-2024_3830-1
OPENSUSE-SU-2024_3831-1
OPENSUSE-SU-2024_3837-1
OPENSUSE-SU-2024_3838-1
OPENSUSE-SU-2024_3842-1
OPENSUSE-SU-2024_3850-1
OPENSUSE-SU-2024_3851-1
OPENSUSE-SU-2024_3852-1
OPENSUSE-SU-2024_3854-1
OPENSUSE-SU-2024_3855-1
OPENSUSE-SU-2024_3857-1
OPENSUSE-SU-2024_3859-1
OPENSUSE-SU-2024_3860-1
OPENSUSE-SU-2024_3880-1
OPENSUSE-SU-2024_4122-1
OPENSUSE-SU-2024_4123-1
OPENSUSE-SU-2024_4124-1
OPENSUSE-SU-2024_4125-1
OPENSUSE-SU-2024_4180-1
OPENSUSE-SU-2024_4207-1
OPENSUSE-SU-2024_4214-1
OPENSUSE-SU-2024_4216-1
OPENSUSE-SU-2024_4218-1
OPENSUSE-SU-2024_4234-1
OPENSUSE-SU-2024_4235-1
OPENSUSE-SU-2024_4236-1
OPENSUSE-SU-2024_4243-1
OPENSUSE-SU-2024_4246-1
OPENSUSE-SU-2024_4256-1
OPENSUSE-SU-2024_4264-1
OPENSUSE-SU-2024_4266-1
OPENSUSE-SU-2024_4275-1
OPENSUSE-SU-2025_0101-1
OPENSUSE-SU-2025_0106-1
OPENSUSE-SU-2025_0107-1
OPENSUSE-SU-2025_0109-1
OPENSUSE-SU-2025_0110-1
OPENSUSE-SU-2025_0114-1
OPENSUSE-SU-2025_0115-1
OPENSUSE-SU-2025_0124-1
OPENSUSE-SU-2025_0131-1
OPENSUSE-SU-2025_0137-1
OPENSUSE-SU-2025_0146-1
OPENSUSE-SU-2025_0150-1
OPENSUSE-SU-2025_0158-1
OPENSUSE-SU-2025_0164-1
OPENSUSE-SU-2025_0238-1
OPENSUSE-SU-2025_0239-1
OPENSUSE-SU-2025_0240-1
OPENSUSE-SU-2025_0244-1
OPENSUSE-SU-2025_0248-1
OPENSUSE-SU-2025_0249-1
OPENSUSE-SU-2025_0251-1
OPENSUSE-SU-2025_0252-1
OPENSUSE-SU-2025_0253-1
OPENSUSE-SU-2025_0254-1
OPENSUSE-SU-2025_0261-1
OPENSUSE-SU-2025_0264-1
OPENSUSE-SU-2025_0266-1
RHSA-2024:9315
RHSA-2024_9315
SUSE-SU-2024:2008-1
SUSE-SU-2024:2019-1
SUSE-SU-2024:2135-1
SUSE-SU-2024:2190-1
SUSE-SU-2024:2203-1
SUSE-SU-2024:2360-1
SUSE-SU-2024:2362-1
SUSE-SU-2024:2365-1
SUSE-SU-2024:2372-1
SUSE-SU-2024:2381-1
SUSE-SU-2024:2384-1
SUSE-SU-2024:2385-1
SUSE-SU-2024:2394-1
SUSE-SU-2024:2495-1
SUSE-SU-2024:2561-1
SUSE-SU-2024:2939-1
SUSE-SU-2024:2973-1
SUSE-SU-2024:3767-1
SUSE-SU-2024:3774-1
SUSE-SU-2024:3777-1
SUSE-SU-2024:3780-1
SUSE-SU-2024:3782-1
SUSE-SU-2024:3783-1
SUSE-SU-2024:3793-1
SUSE-SU-2024:3794-1
SUSE-SU-2024:3796-1
SUSE-SU-2024:3797-1
SUSE-SU-2024:3798-1
SUSE-SU-2024:3799-1
SUSE-SU-2024:3800-1
SUSE-SU-2024:3803-1
SUSE-SU-2024:3804-1
SUSE-SU-2024:3805-1
SUSE-SU-2024:3806-1
SUSE-SU-2024:3814-1
SUSE-SU-2024:3815-1
SUSE-SU-2024:3816-1
SUSE-SU-2024:3820-1
SUSE-SU-2024:3821-1
SUSE-SU-2024:3822-1
SUSE-SU-2024:3824-1
SUSE-SU-2024:3829-1
SUSE-SU-2024:3830-1
SUSE-SU-2024:3831-1
SUSE-SU-2024:3834-1
SUSE-SU-2024:3837-1
SUSE-SU-2024:3838-1
SUSE-SU-2024:3842-1
SUSE-SU-2024:3848-1
SUSE-SU-2024:3849-1
SUSE-SU-2024:3850-1
SUSE-SU-2024:3851-1
SUSE-SU-2024:3852-1
SUSE-SU-2024:3854-1
SUSE-SU-2024:3855-1
SUSE-SU-2024:3857-1
SUSE-SU-2024:3859-1
SUSE-SU-2024:3860-1
SUSE-SU-2024:3880-1
SUSE-SU-2024:4122-1
SUSE-SU-2024:4123-1
SUSE-SU-2024:4124-1
SUSE-SU-2024:4125-1
SUSE-SU-2024:4180-1
SUSE-SU-2024:4197-1
SUSE-SU-2024:4207-1
SUSE-SU-2024:4214-1
SUSE-SU-2024:4216-1
SUSE-SU-2024:4218-1
SUSE-SU-2024:4226-1
SUSE-SU-2024:4231-1
SUSE-SU-2024:4234-1
SUSE-SU-2024:4235-1
SUSE-SU-2024:4236-1
SUSE-SU-2024:4242-1
SUSE-SU-2024:4243-1
SUSE-SU-2024:4246-1
SUSE-SU-2024:4249-1
SUSE-SU-2024:4250-1
SUSE-SU-2024:4256-1
SUSE-SU-2024:4263-1
SUSE-SU-2024:4264-1
SUSE-SU-2024:4266-1
SUSE-SU-2024:4275-1
SUSE-SU-2025:0091-1
SUSE-SU-2025:0097-1
SUSE-SU-2025:0101-1
SUSE-SU-2025:0103-1
SUSE-SU-2025:0106-1
SUSE-SU-2025:0107-1
SUSE-SU-2025:0109-1
SUSE-SU-2025:0110-1
SUSE-SU-2025:0114-1
SUSE-SU-2025:0115-1
SUSE-SU-2025:0124-1
SUSE-SU-2025:0131-1
SUSE-SU-2025:0137-1
SUSE-SU-2025:0146-1
SUSE-SU-2025:0150-1
SUSE-SU-2025:0158-1
SUSE-SU-2025:0164-1
SUSE-SU-2025:0238-1
SUSE-SU-2025:0239-1
SUSE-SU-2025:0240-1
SUSE-SU-2025:0244-1
SUSE-SU-2025:0248-1
SUSE-SU-2025:0249-1
SUSE-SU-2025:0251-1
SUSE-SU-2025:0252-1
SUSE-SU-2025:0253-1
SUSE-SU-2025:0254-1
SUSE-SU-2025:0261-1
SUSE-SU-2025:0264-1
SUSE-SU-2025:0266-1
SUSE-SU-2025:20008-1
SUSE-SU-2025:20028-1
USN-6893-1
USN-6893-2
USN-6893-3
USN-6918-1
USN-7406-1
USN-7406-2
USN-7406-3
USN-7406-4
USN-7406-5
USN-7406-6
USN-7407-1
USN-7408-1
USN-7408-2
USN-7408-3
USN-7408-4
USN-7420-1
USN-7421-1
USN-7458-1
USN-7459-1
USN-7459-2
USN-7462-1
USN-7462-2
USN-7463-1
USN-7475-1
USN-7496-1
USN-7496-2
USN-7496-3
USN-7496-4
USN-7496-5
USN-7506-1
USN-7506-2
USN-7506-3
USN-7506-4
USN-7539-1
USN-7540-1
Affected Products
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Hat
Red Os
Suse
Ubuntu
References · 4309
- 🔥 https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/35xxx/CVE-2024-35864.json⭐ 2713 🔗 593 · Exploit
- https://osv.dev/vulnerability/SUSE-SU-2025:0239-1 · Vendor Advisory
- https://ubuntu.com/security/CVE-2024-35956 · Vendor Advisory
- https://ubuntu.com/security/notices/USN-7406-5 · Vendor Advisory
- https://ubuntu.com/security/CVE-2024-56558 · Vendor Advisory
- https://ubuntu.com/security/CVE-2024-49975 · Vendor Advisory
- https://ubuntu.com/security/CVE-2024-56787 · Vendor Advisory
- https://ubuntu.com/security/CVE-2024-27009 · Vendor Advisory
- https://ubuntu.com/security/CVE-2024-57901 · Vendor Advisory
- https://ubuntu.com/security/CVE-2024-26986 · Vendor Advisory
- https://ubuntu.com/security/CVE-2024-41016 · Vendor Advisory
- https://ubuntu.com/security/CVE-2024-57951 · Vendor Advisory
- https://osv.dev/vulnerability/SUSE-SU-2025:0106-1 · Vendor Advisory
- https://ubuntu.com/security/CVE-2024-40953 · Vendor Advisory
- https://osv.dev/vulnerability/SUSE-SU-2025:0103-1 · Vendor Advisory