PT-2024-7084 · Linux+7 · Linux Kernel+7
Published
2024-06-28
·
Updated
2025-09-29
·
CVE-2024-43853
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel (affected versions not specified)
Description
A Use-After-Free (UAF) vulnerability can occur when
/proc/cpuset is read. This issue can be reproduced by adding a delay before acquiring the cgroup lock in the cgroup path ns function, repeatedly reading /proc/<pid>/cpuset, or mounting and unmounting the cpuset filesystem. The problem arises when the cgroup root allocated for cgroup v1 is cached and subsequently freed, leading to a UAF. The fix involves using rcu read lock in proc cpuset show() to prevent the cgroup root from being freed during the critical section.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Use After Free
Race Condition
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Alt Linux
Astra Linux
Linuxmint
Linux Kernel
Red Hat
Red Os
Suse
Ubuntu