CVE-2024-53117

Summary

In the Linux kernel, the following vulnerability has been resolved:

virtio/vsock: Improve MSG_ZEROCOPY error handling

Add a missing kfree_skb() to prevent memory leaks.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux581512a6dc939ef122e49336626ae159f3b8a345 < 50061d7319e21165d04e3024354c1b43b6137821affected
LinuxLinux581512a6dc939ef122e49336626ae159f3b8a345 < 60cf6206a1f513512f5d73fa4d3dbbcad2e7dcd6affected
LinuxLinux6.7affected
LinuxLinux0 < 6.7unaffected
LinuxLinux6.11.10 <= 6.11.*unaffected
LinuxLinux6.12 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References