CVE-2024-49946 ppp: do not assume bh is held in ppp_channel_bridge_input()

🗓️ 21 Oct 2024 18:02:03Reported by LinuxType

Linux kernel ppp vulnerability CVE-2024-49946 resolved by fixing ppp_channel_bridge_input() inconsistent lock state issue

Reporter	Title	Published	Views	Family All 202
AstraLinux	Astra Linux – Vulnerability found in Linux 5.15, Linux 6.1	3 May 202623:59	–	astralinux
BDU FSTEC	The vulnerability of the ppp_channel_bridge_input() function in the Linux operating system’s ppp component, which allows a hacker to cause a service failure	18 Apr 202500:00	–	bdu_fstec
CBLMariner	CVE-2024-49946 affecting package kernel for versions less than 5.15.173.1-1	11 Dec 202407:24	–	cbl_mariner
CNNVD	Linux kernel 安全漏洞	21 Oct 202400:00	–	cnnvd
CVE	CVE-2024-49946	21 Oct 202418:02	–	cve
Debian	[SECURITY] [DLA 4008-1] linux-6.1 security update	3 Jan 202500:41	–	debian
Debian CVE	CVE-2024-49946	21 Oct 202418:02	–	debiancve
Tenable Nessus	Debian dla-4008 : linux-config-6.1 - security update	3 Jan 202500:00	–	nessus
Tenable Nessus	CBL Mariner 2.0 Security Update: kernel (CVE-2024-49946)	13 Dec 202400:00	–	nessus
Tenable Nessus	MiracleLinux 9 : kernel-5.14.0-570.12.1.el9_6 (AXSA:2025-10392:38)	13 Jan 202600:00	–	nessus

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/net/ppp/ppp_generic.c"
    ],
    "versions": [
      {
        "version": "4cf476ced45d7f12df30a68e833b263e7a2202d1",
        "lessThan": "176dd41e8c2bd997ed3d66568a3362e69ecce99b",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "4cf476ced45d7f12df30a68e833b263e7a2202d1",
        "lessThan": "635deca1800a68624f185dc1e04a8495b48cf185",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "4cf476ced45d7f12df30a68e833b263e7a2202d1",
        "lessThan": "f9620e2a665aa642625bd2501282bbddff556bd7",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "4cf476ced45d7f12df30a68e833b263e7a2202d1",
        "lessThan": "efe9cc0f7c0279216a5522271ec675b8288602e4",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "4cf476ced45d7f12df30a68e833b263e7a2202d1",
        "lessThan": "c837f8583535f094a39386308c2ccfd92c8596cd",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "4cf476ced45d7f12df30a68e833b263e7a2202d1",
        "lessThan": "aec7291003df78cb71fd461d7b672912bde55807",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/net/ppp/ppp_generic.c"
    ],
    "versions": [
      {
        "version": "5.11",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "5.11",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.15.168",
        "lessThanOrEqual": "5.15.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.1.113",
        "lessThanOrEqual": "6.1.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.6.55",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.10.14",
        "lessThanOrEqual": "6.10.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.11.3",
        "lessThanOrEqual": "6.11.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.12",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/c837f8583535f094a39386308c2ccfd92c8596cd
git	www.git.kernel.org/stable/c/635deca1800a68624f185dc1e04a8495b48cf185
git	www.git.kernel.org/stable/c/efe9cc0f7c0279216a5522271ec675b8288602e4
git	www.git.kernel.org/stable/c/f9620e2a665aa642625bd2501282bbddff556bd7
git	www.git.kernel.org/stable/c/aec7291003df78cb71fd461d7b672912bde55807
git	www.git.kernel.org/stable/c/176dd41e8c2bd997ed3d66568a3362e69ecce99b

11 May 2026 20:42Current

EPSS0.00235