AZL-50918 CVE-2024-49852 affecting package kernel for versions less than 6.6.56.1-5

🗓️ 21 Oct 2024 13:15:05Reported by GoogleType

osv

osv🔗 osv.dev👁 1 Views

Kernel fix for use after free in efc_nport_del within SCSI libefc by reordering release.

Reporter	Title	Published	Views	Family All 211
AstraLinux	Astra Linux - уязвимость в linux-5.15, linux-6.1	20 May 202605:53	–	astralinux
Tenable Nessus	Azure Linux 3.0 Security Update: kernel (CVE-2024-49852)	10 Feb 202500:00	–	nessus
Tenable Nessus	Debian dla-4008 : linux-config-6.1 - security update	3 Jan 202500:00	–	nessus
Tenable Nessus	CBL Mariner 2.0 Security Update: kernel (CVE-2024-49852)	13 Dec 202400:00	–	nessus
Tenable Nessus	Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2024-12887)	18 Dec 202400:00	–	nessus
Tenable Nessus	Photon OS 5.0: Linux PHSA-2024-5.0-0393	12 Nov 202400:00	–	nessus
Tenable Nessus	SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:3984-1)	14 Nov 202400:00	–	nessus
Tenable Nessus	SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:4314-1)	14 Dec 202400:00	–	nessus
Tenable Nessus	SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:4315-1)	14 Dec 202400:00	–	nessus
Tenable Nessus	SUSE SLED15 / SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:4318-1)	14 Dec 202400:00	–	nessus

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2024-49852

21 Apr 2026 04:30Current

6.7Medium risk

Vulners AI Score6.7

CVSS 3.17.8

EPSS0.0003

linux kernel scsi subsystem libefc library use after free