CVE-2024-41006

🗓️ 16 Jul 2024 19:27:29Reported by redhat.comType

In the Linux kernel, a memory leak vulnerability related to netrom has been fixed by adding sock_hold() function to nr_heartbeat_expiry() to resolve the issue of use-after-free listening sockets

Reporter	Title	Published	Views	Family All 176
AstraLinux	Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1	20 May 202605:53	–	astralinux
Tenable Nessus	Azure Linux 3.0 Security Update: kernel (CVE-2024-41006)	22 Jan 202600:00	–	nessus
Tenable Nessus	Debian dla-4008 : linux-config-6.1 - security update	3 Jan 202500:00	–	nessus
Tenable Nessus	Debian dsa-5730 : affs-modules-5.10.0-29-4kc-malta-di - security update	16 Jul 202400:00	–	nessus
Tenable Nessus	Debian dsa-5731 : affs-modules-6.1.0-21-4kc-malta-di - security update	16 Jul 202400:00	–	nessus
Tenable Nessus	Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2024-12610)	11 Sep 202400:00	–	nessus
Tenable Nessus	Oracle Linux 7 / 8 : Unbreakable Enterprise kernel-container (ELSA-2024-12612)	11 Sep 202400:00	–	nessus
Tenable Nessus	Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2024-12618)	12 Sep 202400:00	–	nessus
Tenable Nessus	Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2024-12779)	14 Oct 202400:00	–	nessus
Tenable Nessus	Photon OS 5.0: Linux PHSA-2024-5.0-0319	24 Jul 202400:00	–	nessus

Source	Link
cve	www.cve.org/CVERecord
nvd	www.nvd.nist.gov/vuln/detail/CVE-2024-41006
lore	www.lore.kernel.org/linux-cve-announce/2024071244-CVE-2024-41006-d24b@gregkh/T
bugzilla	www.bugzilla.redhat.com/show_bug.cgi

21 Aug 2024 17:41Current

6.9Medium risk

Vulners AI Score6.9

CVSS 3.14.7

EPSS0.0002

CWE-404