PT-2024-5414 · Linux+10 · Linux Kernel+10
Syzbot
·
Published
2024-05-15
·
Updated
2025-09-29
·
CVE-2024-36979
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions prior to 6.6.37
Description
The vulnerability is related to a use-after-free issue in the bridge's MST code. It was discovered that nothing prevents a VLAN from being freed while walking the list from the same path as the bridge's forward delay timer. The vulnerability can be exploited by making the
br mst vlan set state function use an RCU read lock, ensuring that freed memory is not accessed. The issue is identified by a suspicious RCU usage warning.Recommendations
To resolve the issue, update the Linux kernel to version 6.6.37 or later. As a temporary workaround, consider disabling the
br mst vlan set state function until a patch is available. Restrict access to the vulnerable module net/bridge/br mst.c to minimize the risk of exploitation. Avoid using the br forward delay timer expired function in the affected API endpoint until the issue is resolved.Exploit
Fix
Use After Free
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu