A vulnerability has been found in Linux Kernel up to 6.1.94/6.6.34/6.9.5 and classified as critical. This vulnerability affects the function
br_mst_set_state
. The manipulation leads to use after free.
This vulnerability was named CVE-2024-40920. The attack can only be initiated within the local network. There is no exploit available.
It is recommended to upgrade the affected component.