CVE-2024-27395: net: openvswitch: Fix Use-After-Free in ovs_ct_exit
In the Linux kernel, the following vulnerability has been resolved:
net: openvswitch: Fix Use-After-Free in ovsctexit
Since kfreercu, which is called in the hlistforeachentryrcu traversal of ovsctlimitexit, is not part of the RCU read critical section, it is possible that the RCU grace period will pass during the traversal and the key will be free.
To prevent this, it should be changed to hlistforeachentrysafe.
Other sources
In the Linux kernel, the following vulnerability has been resolved:
net: openvswitch: Fix Use-After-Free in ovsctexit
The Linux kernel CVE team has assigned CVE-2024-27395 to this issue.
Upstream advisory: https://lore.kernel.org/linux-cve-announce/2024050836-CVE-2024-27395-573e@gregkh/T
— Red Hat
Affected Software
Remediation
Event History
Frequently Asked Questions
What is the severity of CVE-2024-27395?
CVE-2024-27395 is classified as a moderate severity vulnerability affecting the Linux kernel.
How do I fix CVE-2024-27395?
To address CVE-2024-27395, upgrade the kernel to version 4.19.313, 5.4.275, 5.10.216, 5.15.158, 6.1.90, or 6.6.30 for Red Hat.
Which systems are affected by CVE-2024-27395?
CVE-2024-27395 affects various versions of the Linux kernel, specifically between 4.18 and 6.8.9.
What types of vulnerabilities does CVE-2024-27395 involve?
CVE-2024-27395 involves a Use-After-Free vulnerability within the net: openvswitch component of the Linux kernel.
Is there a patch available for CVE-2024-27395?
Yes, patches for CVE-2024-27395 are included in the kernel versions mentioned previously.