CVE-2024-42075
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Published Jul 29, 2024
Updated: Jul 30, 2024
CWE ID 416
Summary
CVE-2024-42075 is a vulnerability affecting the Linux kernel. This issue was related to the bpf (Berkeley Packet Filter) subsystem. Specifically, the bpf arena logic failed to consider the implications of a mremap operation, resulting in a potential use-after-free scenario. To address this problem, developers added a reference count for multiple mmap events to prevent such incidents in arena_vm_close.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share