PT-2024-8007 · Linux+5 · Linux Kernel+5

Published

2024-08-22

Updated

2025-09-29

CVE-2024-44983

CVSS v3.1

7.1

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.50

Description The issue is related to the netfilter component of the Linux kernel, specifically with the flowtable and validation of the VLAN header. The vulnerability allows an attacker to impact the confidentiality and availability of protected information. The vulnerability is caused by the use of memory beyond the allocated buffer in the nf flow offload inet hook() function. Technical details include the nf flow offload inet hook() function and the nf hook entry hookfn inline function.

Recommendations To resolve the issue, update the Linux kernel to version 6.6.50 or later. As a temporary workaround, consider restricting access to the netfilter component until a patch is available.

Exploit

Fix

Use of Uninitialized Resource

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-908

Related Identifiers

ALSA-2025_16880

ALT-PU-2024-11855

ALT-PU-2024-11863

ALT-PU-2024-12053

ALT-PU-2024-13121

ALT-PU-2024-13260

ALT-PU-2024-13979

ALT-PU-2024-14046

AZL-49003

AZL-49015

BDU:2024-09524

CVE-2024-44983

DLA-4008-1

DSA-5782-1

MGASA-2024-0309

MGASA-2024-0310

OESA-2024-2590

USN-7100-1

USN-7100-2

USN-7123-1

USN-7144-1

USN-7154-1

USN-7154-2

USN-7155-1

USN-7156-1

USN-7194-1

USN-7196-1

Affected Products

Alt Linux

Astra Linux

Linuxmint

Linux Kernel

Red Os

Ubuntu

PT-2024-8007 · Linux+5 · Linux Kernel+5

CVE-2024-44983

Weakness Enumeration

Related Identifiers

Affected Products

References · 884