CVE-2024-53049
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Summary
CVE-2024-53049: A Linux kernel vulnerability has been identified and addressed in the slub/kunit module. The issue arose from the direct use of the __kmalloc_cache_noprof function without allocating an alloc_tag, resulting in a warning due to a null current->alloc_tag. To rectify this, an alloc_hook layer has been added specifically within lib/slub_kunit.c to ensure proper allocation tagging. This warning occurs during the execution of the 'modprobe slub_kunit' command and can be traced back to the __kmalloc_cache_noprof function, as indicated in the call trace.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- Linux Kernel
Affected Vendors
- LINUX