CVE-2024-58239

MEDIUM

Linux Kernel - Use After Free

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: tls: stop recv() if initial process_rx_list gave us non-DATA If we have a non-DATA record on the rx_list and another record of the same type still on the queue, we will end up merging them: - process_rx_list copies the non-DATA record - we start the loop and process the first available record since it's of the same type - we break out of the loop since the record was not DATA Just check the record type and jump to the end in case process_rx_list did some work.

Exploits (2)

nomisec WORKING POC 4 stars

by khoatran107 · poc

https://github.com/khoatran107/cve-2024-58239

View Code ZIP pw:eip

nomisec WORKING POC 3 stars

by khoatran107 · poc

https://github.com/khoatran107/cve-2025-39682

View Code ZIP pw:eip

References (7)

[Patch] https://git.kernel.org/stable/c/31e10d6cb0c9532ff070cf50da1657c3acee9276

[Patch] https://git.kernel.org/stable/c/3b952d8fdfcf6fd8ea0b8954bc9277642cf0977f

[Patch] https://git.kernel.org/stable/c/4338032aa90bd1d5b33a4274e8fa8347cda5ee09

[Patch] https://git.kernel.org/stable/c/6756168add1c6c3ef1c32c335bb843a5d1f99a75

[Patch] https://git.kernel.org/stable/c/a4ed943882a8fc057ea5a67643314245e048bbdd

[Patch] https://git.kernel.org/stable/c/f310143961e2d9a0479fca117ce869f8aaecc140

[Patch] https://git.kernel.org/stable/c/fdfbaec5923d9359698cbb286bc0deadbb717504

Scores

CVSS v3 5.5

EPSS 0.0001

EPSS Percentile 0.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

Status published

Products (8)

linux/Kernel 5.1.0 - 5.4.270linux

linux/Kernel 5.11.0 - 5.15.150linux

linux/Kernel 5.16.0 - 6.1.80linux

linux/Kernel 5.5.0 - 5.10.211linux

linux/Kernel 6.2.0 - 6.6.19linux

linux/Kernel 6.7.0 - 6.7.7linux

linux/linux_kernel 6.8 rc1 (5 CPE variants)

linux/linux_kernel 5.1 - 5.4.270

Published Aug 22, 2025

Tracked Since Feb 18, 2026