A vulnerability was found in Linux Kernel up to 6.6.40/6.9.9. It has been rated as problematic. Affected by this issue is the function
bpf_timer_cancel
of the component bpf. The manipulation leads to deserialization.
This vulnerability is handled as CVE-2024-42239. The attack needs to be done within the local network. There is no exploit available.
It is recommended to upgrade the affected component.