CVE-2024-57982

CVSS v3.1

7.1

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been identified, related to an out-of-bounds read during lookup in the xfrm state. The issue arises when lookup and resize operations run in parallel, and the hash functions can observe a hmask value that is too large for the new hlist array. This is due to the xfrm state hash generation seqlock ensuring a retry, but not preventing the hash functions from accessing an inconsistent hmask value. The vulnerability can be exploited when the update to state bydst is not properly synchronized with the lookup function.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

ALT-PU-2025-12647

AZL-58000

AZL-58017

BDU:2025-10242

CVE-2024-57982

ECHO-4CCF-1B39-24A9

OESA-2025-1541

OESA-2025-1959

OESA-2025-1960

OESA-2025-1961

OESA-2025-2081

OESA-2025-2082

SUSE-SU-2025:02249-1

SUSE-SU-2025:02254-1

SUSE-SU-2025:02307-1

SUSE-SU-2025:02333-1

SUSE-SU-2025:02334-1

SUSE-SU-2025:02335-1

SUSE-SU-2025:02538-1

SUSE-SU-2025:02923-1

SUSE-SU-2025:20475-1

SUSE-SU-2025:20483-1

SUSE-SU-2025:20493-1

SUSE-SU-2025:20498-1

SUSE-SU-2025_02249-1

SUSE-SU-2025_02254-1

SUSE-SU-2025_02307-1

SUSE-SU-2025_02333-1

SUSE-SU-2025_02334-1

SUSE-SU-2025_02335-1

SUSE-SU-2025_02538-1

USN-7521-1

USN-7521-2

USN-7521-3

USN-7651-1

USN-7651-2

USN-7651-3

USN-7651-4

USN-7651-5

USN-7651-6

USN-7652-1

USN-7653-1

USN-7737-1

Affected Products

Alt Linux

Astra Linux

Debian

Linuxmint

Linux Kernel

Suse

Ubuntu

CVE-2024-57982

Weakness Enumeration

Related Identifiers

Affected Products

References · 1697