CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2024-44985: ipv6: prevent possible UAF in ip6_xmit()

Description

In the Linux kernel, the following vulnerability has been resolved:

ipv6: prevent possible UAF in ip6_xmit()

If skb_expand_head() returns NULL, skb has been freed
and the associated dst/idev could also have been freed.

We must use rcu_read_lock() to prevent a possible UAF.

Classification

CVE ID: CVE-2024-44985

Affected Products

Vendor: Linux

Product: Linux

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.04% (probability of being exploited)

EPSS Percentile: 5.07% (scored less or equal to compared to others)

EPSS Date: 2025-02-07 (when was this score calculated)

References

https://git.kernel.org/stable/c/b3a3d5333c13a1be57499581eab4a8fc94d57f36
https://git.kernel.org/stable/c/c47e022011719fc5727bca661d662303180535ba
https://git.kernel.org/stable/c/975f764e96f71616b530e300c1bb2ac0ce0c2596
https://git.kernel.org/stable/c/38a21c026ed2cc7232414cb166efc1923f34af17
https://git.kernel.org/stable/c/124b428fe28064c809e4237b0b38e97200a8a4a8
https://git.kernel.org/stable/c/fc88d6c1f2895a5775795d82ec581afdff7661d1
https://git.kernel.org/stable/c/2d5ff7e339d04622d8282661df36151906d0e1c7

Timeline

2025-01-10 00:30:49 UTC
CVE

ipv6: prevent possible UAF in ip6_xmit()