CVE-2024-26781

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Apr 4, 2024

Updated: Jan 7, 2025

CWE ID 667

Summary

CVE-2024-26781: A deadlock issue was discovered in the Linux kernel's mptcp subflow diag module. This vulnerability occurs when a task tries to acquire a lock that is already being held by another task, resulting in a circular locking dependency. The affected locks include those related to the IPv4 inet_hash, inet_csk_listen_start, and netlink_unicast functions. This deadlock can potentially lead to system instability and denial of service.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Linux Kernel
Debian

Affected Vendors

LINUX
Debian

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/uk6icG
https://www.cve.org/CVERecord?id=CVE-2024-26781
https://nvd.nist.gov/vuln/detail/CVE-2024-26781

Back to Vulnerability Database