PT-2024-6946 · Linux+7 · Linux Kernel+7

Syzbot

·

Published

2024-08-30

·

Updated

2025-09-29

·

CVE-2024-46783

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.52
Description The vulnerability is related to the tcp bpf component in the Linux kernel. It occurs when the last message in psock->cork triggers flushing, resulting in a sk msg larger than the current message size being sent. In tcp bpf send verdict(), the copied variable becomes negative, leading to a bug. This issue can cause a kernel bug at net/socket.c:733 and may result in an internal error.
Recommendations To resolve this issue, update the Linux kernel to version 6.6.52 or later. If updating is not possible, consider disabling the tcp bpf component as a temporary workaround to minimize the risk of exploitation. However, this may have performance implications and should be carefully evaluated before implementation.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-388

Related Identifiers

ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_16880
ALT-PU-2024-12535
BDU:2024-08188
CVE-2024-46783
DLA-3912-1
DLA-4008-1
DSA-5782-1
INFSA-2025_6966
MGASA-2024-0316
MGASA-2024-0318
OESA-2024-2446
OPENSUSE-SU-2024_3551-1
OPENSUSE-SU-2024_3561-1
OPENSUSE-SU-2024_3564-1
OPENSUSE-SU-2024_3587-1
OPENSUSE-SU-2024_3592-1
RHSA-2025:6966
RHSA-2025_6966
SUSE-SU-2024:3551-1
SUSE-SU-2024:3553-1
SUSE-SU-2024:3559-1
SUSE-SU-2024:3561-1
SUSE-SU-2024:3564-1
SUSE-SU-2024:3566-1
SUSE-SU-2024:3569-1
SUSE-SU-2024:3587-1
SUSE-SU-2024:3591-1
SUSE-SU-2024:3592-1
SUSE-SU-2025:20073-1
SUSE-SU-2025:20077-1
USN-7088-1
USN-7088-2
USN-7088-3
USN-7088-4
USN-7088-5
USN-7100-1
USN-7100-2
USN-7119-1
USN-7123-1
USN-7144-1
USN-7154-1
USN-7154-2
USN-7155-1
USN-7156-1
USN-7194-1
USN-7196-1

Affected Products

Alt Linux
Astra Linux
Linuxmint
Linux Kernel
Red Hat
Red Os
Suse
Ubuntu