CVE-2024-26872
HIGHLinux Kernel - Use-After-Free in SRPT Device Event Handler
Title source: llmDescription
In the Linux kernel, the following vulnerability has been resolved: RDMA/srpt: Do not register event handler until srpt device is fully setup Upon rare occasions, KASAN reports a use-after-free Write in srpt_refresh_port(). This seems to be because an event handler is registered before the srpt device is fully setup and a race condition upon error may leave a partially setup event handler in place. Instead, only register the event handler after srpt device initialization is complete.
References (9)
Core 9
Core References
Mailing List, Patch
https://git.kernel.org/stable/c/bdd895e0190c464f54f84579e7535d80276f0fc5
Mailing List, Patch
https://git.kernel.org/stable/c/6413e78086caf7bf15639923740da0d91fdfd090
Mailing List, Patch
https://git.kernel.org/stable/c/e362d007294955a4fb929e1c8978154a64efdcb6
Mailing List, Patch
https://git.kernel.org/stable/c/85570b91e4820a0db9d9432098778cafafa7d217
Mailing List, Patch
https://git.kernel.org/stable/c/7104a00fa37ae898a827381f1161fa3286c8b346
Mailing List, Patch
https://git.kernel.org/stable/c/ec77fa12da41260c6bf9e060b89234b980c5130f
Mailing List, Patch
https://git.kernel.org/stable/c/c21a8870c98611e8f892511825c9607f1e2cd456
Vendor Advisory
https://cert-portal.siemens.com/productcert/html/ssa-265688.html
Scores
CVSS v3
7.0
EPSS
0.0001
EPSS Percentile
1.7%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-416
Status
published
Products (24)
debian/debian_linux
10.0
linux/Kernel
3.3.0 - 5.10.214linux
linux/Kernel
5.11.0 - 5.15.153linux
linux/Kernel
5.16.0 - 6.1.83linux
linux/Kernel
6.2.0 - 6.6.23linux
linux/Kernel
6.7.0 - 6.7.11linux
linux/Kernel
6.8.0 - 6.8.2linux
Linux/Linux
< 3.3
Linux/Linux
3.3
Linux/Linux
5.10.214 - 5.10.*
... and 14 more
Published
Apr 17, 2024
Tracked Since
Feb 18, 2026