CVE-2024-43888

HIGH

Linux Kernel 6.8-6.10.4 - Use-After-Free in list_lru Memory Cgroup Handling

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: mm: list_lru: fix UAF for memory cgroup The mem_cgroup_from_slab_obj() is supposed to be called under rcu lock or cgroup_mutex or others which could prevent returned memcg from being freed. Fix it by adding missing rcu read lock. Found by code inspection. [[email protected]: only grab rcu lock when necessary, per Vlastimil]

References (2)

Core 2

Core References

Patch

https://git.kernel.org/stable/c/4589f77c18dd98b65f45617b6d1e95313cf6fcab

Patch

https://git.kernel.org/stable/c/5161b48712dcd08ec427c450399d4d1483e21dea

Scores

CVSS v3 7.8

EPSS 0.0022

EPSS Percentile 12.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-416

Status published

Products (9)

linux/Kernel 6.8.0 - 6.10.5linux

Linux/Linux < 6.8

Linux/Linux 0a97c01cd20bb96359d8c9dedad92a061ed34e0b - 4589f77c18dd98b65f45617b6d1e95313cf6fcab

Linux/Linux 0a97c01cd20bb96359d8c9dedad92a061ed34e0b - 5161b48712dcd08ec427c450399d4d1483e21dea

Linux/Linux 6.10.5 - 6.10.*

Linux/Linux 6.11

Linux/Linux 6.8

linux/linux_kernel 6.11 rc1 (2 CPE variants)

linux/linux_kernel 6.8 - 6.10.5

Published Aug 26, 2024

Tracked Since Feb 18, 2026