CVE-2024-26804

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The vulnerability is related to the ip tunnel infrastructure in the Linux kernel, which can cause dev->needed headroom to increment indefinitely. This issue can lead to a use-after-free error when the neigh layer attempts to pull the network header, resulting in skb->data pointing to a memory location outside the allocated area. The syzkaller reproducer demonstrates this issue by routing packets via a gre tunnel and an ipip tunnel, causing the needed headroom to inflate until it exceeds 64k, leading to a wraparound of the skb->network header.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.