#VU102008 Use-after-free in Linux kernel - CVE-2024-56756
Vulnerability identifier: #VU102008
Vulnerability risk: Low
CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID:
CWE-ID:
CWE-416
Exploitation vector: Local
Exploit availability: No
Vulnerable software:
Linux kernel
Operating systems & Components /
Operating system
Vendor: Linux Foundation
Description
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the nvme_free_host_mem(), __nvme_alloc_host_mem() and kfree() functions in drivers/nvme/host/pci.c. A local user can escalate privileges on the system.
Mitigation
Install update from vendor's website.
Vulnerable software versions
Linux kernel: All versions
External links
https://git.kernel.org/stable/c/3c2fb1ca8086eb139b2a551358137525ae8e0d7a
https://git.kernel.org/stable/c/452f9ddd12bebc04cef741e8ba3806bf0e1fd015
https://git.kernel.org/stable/c/582d9ed999b004fb1d415ecbfa86d4d8df455269
https://git.kernel.org/stable/c/6d0f599db73b099aa724a12736369c4d4d92849d
https://git.kernel.org/stable/c/869cf50b9c9d1059f5223f79ef68fc0bc6210095
https://git.kernel.org/stable/c/ac22240540e0c5230d8c4138e3778420b712716a
https://git.kernel.org/stable/c/cee3bff51a35cab1c5d842d409a7b11caefe2386
https://git.kernel.org/stable/c/fb96d5cfa97a7363245b3dd523f475b04296d87b
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
