CVE-2024-27396

Summary

In the Linux kernel, the following vulnerability has been resolved:

net: gtp: Fix Use-After-Free in gtp_dellink

Since call_rcu, which is called in the hlist_for_each_entry_rcu traversal of gtp_dellink, is not part of the RCU read critical section, it is possible that the RCU grace period will pass during the traversal and the key will be free.

To prevent this, it should be changed to hlist_for_each_entry_safe.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux043a283d24f40fea4c8a8d06b0e2694c8e372200 < 07b20d0a3dc13fb1adff10b60021a4924498da58affected
LinuxLinuxc185e1d6e2752a4b656c3ca878c525fa11f55757 < 718df1bc226c383dd803397d7f5d95557eb81ac7affected
LinuxLinux94dc550a5062030569d4aa76e10e50c8fc001930 < 0caff3e6390f840666b8dc1ecebf985c2ef3f1ddaffected
LinuxLinux94dc550a5062030569d4aa76e10e50c8fc001930 < 2e74b3fd6bf542349758f283676dff3660327c07affected
LinuxLinux94dc550a5062030569d4aa76e10e50c8fc001930 < 25a1c2d4b1fcf938356a9688a96a6456abd44b29affected
LinuxLinux94dc550a5062030569d4aa76e10e50c8fc001930 < 2aacd4de45477582993f8a8abb9505a06426bfb6affected
LinuxLinux94dc550a5062030569d4aa76e10e50c8fc001930 < cd957d1716ec979d8f5bf38fc659aeb9fdaa2474affected
LinuxLinux94dc550a5062030569d4aa76e10e50c8fc001930 < f2a904107ee2b647bb7794a1a82b67740d7c8a64affected
LinuxLinuxa29c4303930bc0c25ae6a4f365dcdef71447b4eaaffected
LinuxLinux4.19.93 < 4.19.313affected
LinuxLinux5.4.8 < 5.4.275affected
LinuxLinux4.14.162 < 4.15affected
LinuxLinux5.5affected
LinuxLinux0 < 5.5unaffected
LinuxLinux4.19.313 <= 4.19.*unaffected
LinuxLinux5.4.275 <= 5.4.*unaffected
LinuxLinux5.10.216 <= 5.10.*unaffected
LinuxLinux5.15.158 <= 5.15.*unaffected
LinuxLinux6.1.90 <= 6.1.*unaffected
LinuxLinux6.6.30 <= 6.6.*unaffected
LinuxLinux6.8.9 <= 6.8.*unaffected
LinuxLinux6.9 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

Additional References

References