PT-2025-3576 · Linux+5 · Linux Kernel+5

Published

2024-12-24

·

Updated

2026-05-11

·

CVE-2024-57795

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.12.0-rc3-syzkaller-00399-g9197b73fd7bb
Description A slab-use-after-free issue has been identified in the Linux kernel, specifically in the RDMA/rxe component. This problem occurs when the event ib cache event task is sent and queued in ib wq, and later the net device is freed, but the event is still executed, leading to a call trace. The issue is related to the dev get flags function and the rxe query port function.
Recommendations To resolve this issue, update the Linux kernel to a version that includes the fix for this problem. As a temporary workaround, consider disabling the rxe query port function until a patch is available. Restrict access to the vulnerable ib cache event task to minimize the risk of exploitation. Avoid using the dev get flags function in the affected API endpoint until the issue is resolved.

Exploit

Fix

Use After Free

Weakness Enumeration

CWE-416

Related Identifiers

ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_16880
ALT-PU-2025-12647
AZL-59076
AZL-59091
BDU:2025-02794
CVE-2024-57795
ECHO-36F4-D374-D212
OESA-2025-1202
OESA-2025-1203
OESA-2025-1446
OESA-2025-1450
OPENSUSE-SU-2025_0428-1
OPENSUSE-SU-2025_0499-1
OPENSUSE-SU-2025_0557-1
SUSE-SU-2025:0289-1
SUSE-SU-2025:0428-1
SUSE-SU-2025:0499-1
SUSE-SU-2025:0557-1
SUSE-SU-2025:20165-1
SUSE-SU-2025:20166-1
SUSE-SU-2025:20248-1
SUSE-SU-2025:20249-1
SUSE-SU-2025_0428-1
SUSE-SU-2025_0499-1
SUSE-SU-2025_0557-1
USN-7379-1
USN-7379-2
USN-7380-1
USN-7381-1
USN-7382-1
USN-8179-1
USN-8179-2
USN-8179-3
USN-8179-4
USN-8184-1
USN-8185-1
USN-8185-2
USN-8203-1
USN-8204-1
USN-8258-1
USN-8260-1
USN-8261-1
USN-8265-1

Affected Products

Alt Linux
Debian
Linuxmint
Linux Kernel
Suse
Ubuntu