CVE-2024-42285

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.6.50

Description: The issue is related to a use-after-free vulnerability in the RDMA/iwcm module of the Linux kernel. This vulnerability occurs when the iw conn req handler() function associates a new struct rdma id private (conn id) with an existing struct iw cm id (cm id). The rdma destroy id() function frees both the cm id and the struct rdma id private, but the cm work handler() function may still trigger a use-after-free if it tries to access the freed struct rdma id private. This could potentially allow an attacker to impact the confidentiality, integrity, and availability of protected information.

Recommendations: To resolve this issue, update the Linux kernel to version 6.6.50 or later. As a temporary workaround, consider restricting access to the RDMA/iwcm module to minimize the risk of exploitation. Avoid using the cm id and conn id structures in the affected API endpoints until the issue is resolved.