CVE-2024-46858 | Linux Kernel up to 6.1.110/6.6.51/6.10.10 mptcp sk_stop_timer_sync use after free

Posted by Angelo Barbosa | Sep 27, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.1.110/6.6.51/6.10.10. Affected by this issue is the function sk_stop_timer_sync of the component mptcp. The manipulation leads to use after free.

This vulnerability is handled as CVE-2024-46858. The attack needs to be approached within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-46858 | Linux Kernel up to 6.1.110/6.6.51/6.10.10 mptcp sk_stop_timer_sync use after free

Related Posts

CVE-2024-35235 | OpenPrinting CUPS up to 2.4.8 Setting cupsd.conf link following (GHSA-vvwp-mv6j-hw6f)

CVE-2023-48799 | Totolink X6000R 9.4.0cu.852_B20230719 Privilege Escalation

CVE-2023-51439 | Siemens JT2Go/Teamcenter Visualization CGM File out-of-bounds (ssa-794653)

CVE-2024-22239 | VMware Aria Operations for Networks prior 6.12 Console Local Privilege Escalation (VMSA-2024-0002)