CVE-2024-1441

MEDIUM

Red Hat Enterprise Linux 9 - Denial of Service via udevListInterfacesByStatus Off-by-One Error

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-1441. PoCs published by almkuznetsov.

AI-analyzed exploit summary This repository provides a detailed technical walkthrough of the fuzzing and analysis process used to discover CVE-2024-1441. It includes step-by-step instructions for setting up the environment, building the target software (libvirt) with AFL++ instrumentation, running fuzzing, and analyzing crashes using CASR.

Description

An off-by-one error flaw was found in the udevListInterfacesByStatus() function in libvirt when the number of interfaces exceeds the size of the `names` array. This issue can be reproduced by sending specially crafted data to the libvirt daemon, allowing an unprivileged client to perform a denial of service attack by causing the libvirt daemon to crash.

Exploits (1)

nomisec WRITEUP

by almkuznetsov · poc

https://github.com/almkuznetsov/CVE-2024-1441

View Code ZIP pw:eip

This repository provides a detailed technical walkthrough of the fuzzing and analysis process used to discover CVE-2024-1441. It includes step-by-step instructions for setting up the environment, building the target software (libvirt) with AFL++ instrumentation, running fuzzing, and analyzing crashes using CASR.

Classification

Writeup 90%

Attack Type

Other

Complexity

Complex

Reliability

Theoretical

Target: libvirt

No auth needed

Prerequisites: Docker environment · AFL++ · CASR · libvirt dependencies · preeny

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (7)

Core 7

Core References

Mailing List

https://lists.debian.org/debian-lts-announce/2024/04/msg00000.html

Vendor Advisory

https://security.netapp.com/advisory/ntap-20250411-0003/

Mailing List, Third Party Advisory

https://lists.fedoraproject.org/archives/list/[email protected]/message/45FFKU3LODT345LAB5T4XZA5WKYMXJYU/

Mailing List, Third Party Advisory

https://lists.fedoraproject.org/archives/list/[email protected]/message/E6MVZO5GXDB7RHY6MS3ZXES3HPK34P3A/

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2024:2560

Vendor Advisory vdb-entry x_refsource_redhat

https://access.redhat.com/security/cve/CVE-2024-1441

Issue Tracking issue-tracking x_refsource_redhat

https://bugzilla.redhat.com/show_bug.cgi?id=2263841

Scores

CVSS v3 5.5

EPSS 0.0040

EPSS Percentile 31.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-193

Status published

Products (5)

Red Hat/Red Hat Enterprise Linux 6

Red Hat/Red Hat Enterprise Linux 7

Red Hat/Red Hat Enterprise Linux 8

Red Hat/Red Hat Enterprise Linux 8 Advanced Virtualization

Red Hat/Red Hat Enterprise Linux 9 0:10.0.0-6.2.el9_4

Published Mar 11, 2024

Tracked Since Feb 18, 2026