Lucene search
+L

4 matches found

cvelist
cvelist
added 2024/10/21 7:39 p.m.27 views

CVE-2024-50036 net: do not delay dst_entries_add() in dst_release()

In the Linux kernel, the following vulnerability has been resolved: net: do not delay dstentriesadd in dstrelease dstentriesadd uses per-cpu data that might be freed at netns dismantle from ip6routenetexit calling dstentriesdestroy Before ip6routenetexit can be called, we release all the dsts...

0.00239EPSS
Exploits0References6
vulnrichment
vulnrichment
added 2024/10/21 7:39 p.m.15 views

CVE-2024-50036 net: do not delay dst_entries_add() in dst_release()

In the Linux kernel, the following vulnerability has been resolved: net: do not delay dstentriesadd in dstrelease dstentriesadd uses per-cpu data that might be freed at netns dismantle from ip6routenetexit calling dstentriesdestroy Before ip6routenetexit can be called, we release all the dsts...

6.8AI score0.00239EPSS
Exploits0References6
osv
osv
added 2024/10/21 7:39 p.m.24 views

CVE-2024-50036 net: do not delay dst_entries_add() in dst_release()

In the Linux kernel, the following vulnerability has been resolved: net: do not delay dstentriesadd in dstrelease dstentriesadd uses per-cpu data that might be freed at netns dismantle from ip6routenetexit calling dstentriesdestroy Before ip6routenetexit can be called, we release all the dsts...

7CVSS6.3AI score0.00239EPSS
Exploits0References11
cve
cve
added 2024/10/21 7:39 p.m.177 views

CVE-2024-50036

CVE-2024-50036 is a Linux kernel vulnerability where dst_entries_add() uses per-CPU data that can be freed during netns dismantle, making dst_entries_destroy() race with dst_release() and potentially causing a use-after-free. The issue arises because the count of dsts must be decremented earlier,...

7CVSS6.6AI score0.00239EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder