CVE-2024-26625

Summary

CVE-2024-26625 is a vulnerability affecting the Linux kernel that was identified in the llc (Local Loopback Control) subsystem. The issue stems from a failure to call sock_orphan() at release time, resulting in a stale sk->sk_wq pointer in a closed llc socket. This can lead to use-after-free errors, as reported by the KASAN memory error detector. Affected protocols may be missing the necessary sock_orphan() call, necessitating a full audit. In net-next, plans are underway to clear sock->sk from sock_orphan() and address the issue with a warning. The vulnerability can potentially allow an attacker to execute arbitrary code or cause a denial-of-service condition.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.