CVE-2024-42239 | Linux Kernel up to 6.6.40/6.9.9 bpf bpf_timer_cancel deserialization (936983051868/3e4e8178a866/d4523831f07a)

Inserito da Angelo Barbosa | Ago 7, 2024 | CVE

A vulnerability was found in Linux Kernel up to 6.6.40/6.9.9. It has been rated as problematic. Affected by this issue is the function bpf_timer_cancel of the component bpf. The manipulation leads to deserialization.

This vulnerability is handled as CVE-2024-42239. The attack needs to be done within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-42239 | Linux Kernel up to 6.6.40/6.9.9 bpf bpf_timer_cancel deserialization (936983051868/3e4e8178a866/d4523831f07a)

Post correlati

CVE-2023-6448 | Unitronics Vision Series PLC all insecure default initialization of resource

CVE-2024-6035 | gaizhenbiao chuanhuchatgpt up to 20240410 cross site scripting

CVE-2022-2413 | simonpedge Slide Anything Plugin up to 2.3.46 on WordPress cross site scripting

CVE-2023-49331 | Zoho ManageEngine ADAudit Plus up to 7270 Reports Search Aggregation sql injection