PT-2025-3628 · Linux+8 · Linux Kernel+8
Syzbot
·
Published
2024-12-31
·
Updated
2026-03-14
·
CVE-2024-57903
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions prior to 6.6.74
Description
A vulnerability in the Linux kernel has been resolved, which restricted the SO REUSEPORT socket option to inet sockets. This issue occurred after a commit that allowed crypto sockets to be accidentally destroyed from an RCU callback, as detected by zyzbot. The problem arose because acquiring a mutex in an RCU callback is not permitted. The patch initially supported TCP, UDP, and SCTP sockets but was later updated to include RAW and ICMP support.
Recommendations
To resolve this issue, update the Linux kernel to version 6.6.74 or later. As a temporary workaround, consider restricting the use of the SO REUSEPORT socket option to inet sockets until a patch is available. Additionally, be cautious when using crypto sockets and RCU callbacks to avoid potential conflicts.
Exploit
Fix
Improper Locking
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Hat
Red Os
Suse
Ubuntu