PT-2024-6773 · Linux+10 · Linux Kernel+10

Joel Guittet

·

Published

2024-07-01

·

Updated

2025-09-29

·

CVE-2024-42154

CVSS v3.1

4.4

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.43
Description The issue is related to the lack of validation of the source address length in the tcp metrics structure, specifically for the TCP METRICS ATTR SADDR IPV4 attribute. This attribute is not checked to be at least 4 bytes long, and there is no entry for it in the policy. The vulnerability may allow an attacker to impact the confidentiality, integrity, and availability of protected information. The issue is related to the NETLINK socket, which can be used locally.
Recommendations To resolve the issue, update the Linux kernel to version 6.6.43 or later. As a temporary workaround, consider restricting access to the NETLINK socket to minimize the risk of exploitation.

Exploit

Fix

DoS

Improper Check for Exceptional Conditions

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-130CWE-754

Related Identifiers

ALSA-2024:7000
ALSA-2024:7001
ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_16880
ALT-PU-2024-10465
ALT-PU-2024-11524
ALT-PU-2024-12537
ALT-PU-2024-13979
ALT-PU-2024-14046
AZL-47522
AZL-47598
BDU:2024-07986
CESA-2024_7000
CESA-2024_7001
CVE-2024-42154
DLA-4008-1
DSA-5747-1
INFSA-2024_7000
INFSA-2024_7001
INFSA-2024_9315
MGASA-2024-0277
MGASA-2024-0278
OESA-2024-1992
OESA-2024-1994
OESA-2024-1995
OESA-2024-1996
OPENSUSE-SU-2024_3551-1
OPENSUSE-SU-2024_3561-1
OPENSUSE-SU-2024_3564-1
OPENSUSE-SU-2024_3587-1
OPENSUSE-SU-2024_3592-1
RHSA-2024:10771
RHSA-2024:10772
RHSA-2024:10773
RHSA-2024:6993
RHSA-2024:7000
RHSA-2024:7001
RHSA-2024:9315
RHSA-2024_7000
RHSA-2024_7001
RHSA-2024_9315
RLSA-2024:7001
SUSE-SU-2024:3551-1
SUSE-SU-2024:3553-1
SUSE-SU-2024:3559-1
SUSE-SU-2024:3561-1
SUSE-SU-2024:3564-1
SUSE-SU-2024:3566-1
SUSE-SU-2024:3569-1
SUSE-SU-2024:3587-1
SUSE-SU-2024:3591-1
SUSE-SU-2024:3592-1
SUSE-SU-2025:20073-1
SUSE-SU-2025:20077-1
USN-7003-1
USN-7003-2
USN-7003-3
USN-7003-4
USN-7003-5
USN-7006-1
USN-7007-1
USN-7007-2
USN-7007-3
USN-7009-1
USN-7009-2
USN-7019-1
USN-7020-1
USN-7020-2
USN-7020-3
USN-7020-4
USN-7028-1
USN-7028-2
USN-7029-1
USN-7039-1
USN-7156-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu