CVE-2024-41044: ppp: reject claimed-as-LCP but actually malformed packets

Published Jul 29, 2024
·
Updated

In the Linux kernel, the following vulnerability has been resolved:

ppp: reject claimed-as-LCP but actually malformed packets

Since 'pppasyncencode()' assumes valid LCP packets (with code from 1 to 7 inclusive), add 'pppcheckpacket()' to ensure that LCP packet has an actual body beyond PPPLCP header bytes, and reject claimed-as-LCP but actually malformed data otherwise.

Other sources

Linux Kernel is vulnerable to a denial of service, caused by an error related to pppasyncencode() in pppgeneric.c. A local authenticated attacker could exploit this vulnerability to cause a denial of service.

IBM

Affected Software

33 affected componentsFixes available
redhat/kernel<4.19.318
4.19.318
redhat/kernel<5.4.280
5.4.280
redhat/kernel<5.10.222
5.10.222
redhat/kernel<5.15.163
5.15.163
redhat/kernel<6.1.100
6.1.100
redhat/kernel<6.6.41
6.6.41
redhat/kernel<6.9.10
6.9.10
redhat/kernel<6.10
6.10
IBM Security Verify Governance<=ISVG 10.0.2
IBM Security Verify Governance, Identity Manager Software Stack<=ISVG 10.0.2
IBM Security Verify Governance, Identity Manager Virtual Appliance<=ISVG 10.0.2
IBM Security Verify Governance Identity Manager Container<=ISVG 10.0.2
debian/linux
5.10.223-15.10.234-16.1.129-16.1.135-16.12.25-16.12.27-1
debian/linux-6.1
6.1.129-1~deb11u1
Linux Linux kernel>=2.6.13<4.19.318
Linux Linux kernel>=4.20<5.4.280
Linux Linux kernel>=5.5<5.10.222
Linux Linux kernel>=5.11<5.15.163
Linux Linux kernel>=5.16<6.1.100
Linux Linux kernel>=6.2<6.6.41
Linux Linux kernel>=6.7<6.9.10
Linux Linux kernel=2.6.12
Linux Linux kernel=2.6.12-rc2
Linux Linux kernel=2.6.12-rc3
Linux Linux kernel=2.6.12-rc4
Linux Linux kernel=2.6.12-rc5
Linux Linux kernel=6.10-rc1
Linux Linux kernel=6.10-rc2
Linux Linux kernel=6.10-rc3
Linux Linux kernel=6.10-rc4
Linux Linux kernel=6.10-rc5
Linux Linux kernel=6.10-rc6
Linux Linux kernel=6.10-rc7

Remediation

Patch Available

https://git.kernel.org/stable/c/099502ca410922b56353ccef2749bc0de669da78

Patch Available

https://git.kernel.org/stable/c/3134bdf7356ed952dcecb480861d2afcc1e40492

Patch Available

https://git.kernel.org/stable/c/3ba12c2afd933fc1bf800f6d3f6c7ec8f602ce56

Patch Available

https://git.kernel.org/stable/c/6e8f1c21174f9482033bbb59f13ce1a8cbe843c3

Patch Available

https://git.kernel.org/stable/c/97d1efd8be26615ff680cdde86937d5943138f37

Patch Available

https://git.kernel.org/stable/c/d683e7f3fc48f59576af34631b4fb07fd931343e

Patch Available

https://git.kernel.org/stable/c/ebc5c630457783d17d0c438b0ad70b232a64a82f

Patch Available

https://git.kernel.org/stable/c/f2aeb7306a898e1cbd03963d376f4b6656ca2b55

Event History

Jul 29, 2024
CVE Published
via MITRE·02:32 PM
Data Sourced
via MITRE·02:32 PM
Description
Data Sourced
via NVD·03:15 PM
Description
Data Sourced
via NVD·03:15 PM
RemedySeverityAffected Software
Apr 29, 2025
Data Sourced
via Ubuntu·06:21 AM
RemedyDescriptionSeverityAffected Software

Parent advisories

This vulnerability appears in the following advisories.

Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Frequently Asked Questions

1

What is the severity of CVE-2024-41044?

CVE-2024-41044 is categorized as a moderate severity vulnerability in the Linux kernel.

2

How do I fix CVE-2024-41044?

To fix CVE-2024-41044, upgrade the kernel to a version that is patched, such as 4.19.318, 5.4.280, 5.10.222, or newer.

3

What types of systems are affected by CVE-2024-41044?

CVE-2024-41044 affects systems running vulnerable versions of the Linux kernel, such as those from Red Hat and Debian.

4

What are the indicators of compromise related to CVE-2024-41044?

Indicators of compromise for CVE-2024-41044 may include unexpected crashes or instability in systems using the PPP protocol.

5

Is there a specific patch available for CVE-2024-41044?

Yes, a specific patch for CVE-2024-41044 has been included in kernel versions 4.19.318 and later.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203