PT-2024-6851 · Linux+7 · Linux Kernel+7

Jeongjun Park

+1

·

Published

2024-04-22

·

Updated

2025-09-29

·

CVE-2024-43873

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.50
Description The issue is related to the incorrect initialization of the seqpacket allow function in the Linux kernel. There are two problems with seqpacket allow: it is not initialized when a socket is created, and if VIRTIO VSOCK F SEQPACKET is set and then cleared, seqpacket allow will not be cleared properly. This could allow an attacker to impact the confidentiality, integrity, and availability of protected information.
Recommendations To fix the issue, initialize seqpacket allow after allocation and set it unconditionally in set features. Update to Linux kernel version 6.6.50 or later to resolve the issue. As a temporary workaround, consider restricting access to the vulnerable vhost/vsock module to minimize the risk of exploitation.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-909

Related Identifiers

ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_16880
ALT-PU-2024-11855
ALT-PU-2024-11863
ALT-PU-2024-13121
ALT-PU-2024-13979
ALT-PU-2024-14046
AZL-48504
BDU:2024-08071
CVE-2024-43873
DLA-4008-1
INFSA-2025_6966
MGASA-2024-0309
MGASA-2024-0310
OESA-2024-2590
OPENSUSE-SU-2024_3190-1
OPENSUSE-SU-2024_3209-1
OPENSUSE-SU-2024_3483-1
RHSA-2025:6966
RHSA-2025_6966
SUSE-SU-2024:3190-1
SUSE-SU-2024:3194-1
SUSE-SU-2024:3195-1
SUSE-SU-2024:3209-1
SUSE-SU-2024:3383-1
SUSE-SU-2024:3483-1
SUSE-SU-2025:20044-1
SUSE-SU-2025:20047-1
USN-7100-1
USN-7100-2
USN-7123-1
USN-7144-1
USN-7154-1
USN-7154-2
USN-7155-1
USN-7156-1
USN-7194-1
USN-7196-1

Affected Products

Alt Linux
Astra Linux
Linuxmint
Linux Kernel
Red Hat
Red Os
Suse
Ubuntu