CVE-2024-40954 | Linux Kernel up to 5.15.161/6.1.95/6.6.35/6.9.6 atomic64_64.h __sock_release use after free

Posted by Angelo Barbosa | Jul 12, 2024 | CVE

A vulnerability was found in Linux Kernel up to 5.15.161/6.1.95/6.6.35/6.9.6. It has been declared as critical. This vulnerability affects the function __sock_release in the library /arch/x86/include/asm/atomic64_64.h. The manipulation leads to use after free.

This vulnerability was named CVE-2024-40954. The attack needs to be approached within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-40954 | Linux Kernel up to 5.15.161/6.1.95/6.6.35/6.9.6 atomic64_64.h __sock_release use after free

Related Posts

CVE-2024-27095 | Decidim up to 0.27.5/0.28.0 Record cross site scripting (GHSA-529p-jj47-w3m3)

CVE-2023-29052 | Open-Xchange OX App Suite up to 7.10.6-rev34 Disclaimer Text cross site scripting (oxas-adv-2023-0006)

CVE-2024-25114 | CollaboraOnline CELL filename information disclosure (GHSA-2fh2-ppjf-p3xv)

CVE-2024-24149 | libming 0.4.8 SWF File parseSWF_GLYPHENTRY memory leak