CVE-2024-14027

ANALYSIS PENDING

Linux Kernel - Memory Corruption

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: fs/xattr: missing fdput() in fremovexattr error path In the Linux kernel, the fremovexattr() syscall calls fdget() to acquire a file reference but returns early without calling fdput() when strncpy_from_user() fails on the name argument. In multi-threaded processes where fdget() takes the slow path, this permanently leaks one file reference per call, pinning the struct file and associated kernel objects in memory. An unprivileged local user can exploit this to cause kernel memory exhaustion. The issue was inadvertently fixed by commit a71874379ec8 ("xattr: switch to CLASS(fd)").

Exploits (1)

nomisec WORKING POC

by lcfr-eth · poc

https://github.com/lcfr-eth/CVE-2024-14027_slop

View Code ZIP pw:eip

References (4)

[Vendor Advisory] https://git.kernel.org/stable/c/a71874379ec8c6e788a61d71b3ad014a8d9a5c08

[Vendor Advisory] https://git.kernel.org/stable/c/d151b94967c8247005435b63fc60f8f4baa320da

https://git.kernel.org/stable/c/5a1e865e51063d6c56f673ec8ad4b6604321b455

https://git.kernel.org/stable/c/9a3a2ae5efbbcaed37551218abed94e23c537157

Scores

EPSS 0.0001

EPSS Percentile 2.2%

Details

Status published

Products (13)

linux/Kernel 6.11.0 - 6.12.77linux

Linux/Linux < 6.11

Linux/Linux 6.11

Linux/Linux 6.12.77 - 6.12.*

Linux/Linux 6.13

Linux/Linux 6.6.131 - 6.6.*

Linux/Linux 6.6.133 - 6.6.*

Linux/Linux 8d5863cb33aa424fc27115ee945ad6b96ae2facb

Linux/Linux c03185f4a23e7f89d84c9981091770e876e64480 - 5a1e865e51063d6c56f673ec8ad4b6604321b455

Linux/Linux c03185f4a23e7f89d84c9981091770e876e64480 - 9a3a2ae5efbbcaed37551218abed94e23c537157

... and 3 more

Published Mar 09, 2026

Tracked Since Mar 09, 2026