CVE-2024-27395

HIGH

Linux kernel - Use After Free

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: Fix Use-After-Free in ovs_ct_exit Since kfree_rcu, which is called in the hlist_for_each_entry_rcu traversal of ovs_ct_limit_exit, is not part of the RCU read critical section, it is possible that the RCU grace period will pass during the traversal and the key will be free. To prevent this, it should be changed to hlist_for_each_entry_safe.

References (10)

[Patch] https://git.kernel.org/stable/c/2db9a8c0a01fa1c762c1e61a13c212c492752994

[Patch] https://git.kernel.org/stable/c/35880c3fa6f8fe281a19975d2992644588ca33d3

[Patch] https://git.kernel.org/stable/c/589523cf0b384164e445dd5db8d5b1bf97982424

[Patch] https://git.kernel.org/stable/c/5ea7b72d4fac2fdbc0425cd8f2ea33abe95235b2

[Patch] https://git.kernel.org/stable/c/9048616553c65e750d43846f225843ed745ec0d4

[Patch] https://git.kernel.org/stable/c/bca6fa2d9a9f560e6b89fd5190b05cc2f5d422c1

[Patch] https://git.kernel.org/stable/c/eaa5e164a2110d2fb9e16c8a29e4501882235137

[Patch] https://git.kernel.org/stable/c/edee0758747d7c219e29db9ed1d4eb33e8d32865

[Mailing List] https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html

[Mailing List] https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html

Scores

CVSS v3 7.8

EPSS 0.0001

EPSS Percentile 2.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-416

Status published

Affected Products (14)

linux/linux_kernel < 4.19.313

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

debian/debian_linux

linux/Kernel < 4.19.313linux

linux/Kernel < 5.4.275linux

linux/Kernel < 5.10.216linux

linux/Kernel < 5.15.158linux

linux/Kernel < 6.1.90linux

linux/Kernel < 6.6.30linux

linux/Kernel < 6.8.9linux

Timeline

Published May 14, 2024

Tracked Since Feb 18, 2026