What is the severity of CVE-2024-44998?

CVE-2024-44998 is classified as a medium severity vulnerability in the Linux kernel.

How do I fix CVE-2024-44998?

To remediate CVE-2024-44998, upgrade the Linux kernel to versions 5.10.226 or later, or 6.1.123 or later.

Which versions of the Linux kernel are affected by CVE-2024-44998?

CVE-2024-44998 affects Linux kernel versions prior to 4.20, 5.10.226, and 6.1.123.

What type of vulnerability is CVE-2024-44998?

CVE-2024-44998 is a use-after-free vulnerability that occurs in the dequeue_rx function of the ATM subsystem.

Is there a workaround for CVE-2024-44998?

Currently, there is no specific workaround for CVE-2024-44998; applying the available patches is recommended.

Vulnerability/
CVE-2024-44998

high

7.8

CWE

416

4/9/2024

19/12/2024

CVE-2024-44998: atm: idt77252: prevent use after free in dequeue_rx()

First published: Wed Sep 04 2024(Updated: )

In the Linux kernel, the following vulnerability has been resolved: atm: idt77252: prevent use after free in dequeue_rx() We can't dereference "skb" after calling vcc->push() because the skb is released.

Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Affected Software	Affected Version	How to fix
Linux Kernel	>=2.6.12<4.19.321
Linux Kernel	>=4.20<5.4.283
Linux Kernel	>=5.5<5.10.225
Linux Kernel	>=5.11<5.15.166
Linux Kernel	>=5.16<6.1.107
Linux Kernel	>=6.2<6.6.48
Linux Kernel	>=6.7<6.10.7
Linux Kernel	=6.11-rc1
Linux Kernel	=6.11-rc2
Linux Kernel	=6.11-rc3
debian/linux	<=5.10.223-1	5.10.226-1 6.1.123-1 6.1.119-1 6.12.11-1 6.12.12-1
debian/linux-6.1		6.1.119-1~deb11u1

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2024-44998?
CVE-2024-44998 is classified as a medium severity vulnerability in the Linux kernel.
How do I fix CVE-2024-44998?
To remediate CVE-2024-44998, upgrade the Linux kernel to versions 5.10.226 or later, or 6.1.123 or later.
Which versions of the Linux kernel are affected by CVE-2024-44998?
CVE-2024-44998 affects Linux kernel versions prior to 4.20, 5.10.226, and 6.1.123.
What type of vulnerability is CVE-2024-44998?
CVE-2024-44998 is a use-after-free vulnerability that occurs in the dequeue_rx function of the ATM subsystem.
Is there a workaround for CVE-2024-44998?
Currently, there is no specific workaround for CVE-2024-44998; applying the available patches is recommended.

agent/type
agent/title
agent/first-publish-date
agent/remedy
agent/severity
agent/weakness
collector/launchpad-cve
source/Launchpad
agent/references
agent/author
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/trending
collector/usn-cve
source/Ubuntu
agent/description
agent/event
agent/source
collector/security-tracker-debian
source/Debian
agent/software-canonical-lookup
collector/nvd-cve
source/NVD
agent/software-canonical-lookup-request
collector/nvd-api
agent/softwarecombine
agent/tags
package-manager/debian
vendor/linux
canonical/linux kernel
version/linux kernel/2.6.12
version/linux kernel/4.20
version/linux kernel/5.5
version/linux kernel/5.11
version/linux kernel/5.16
version/linux kernel/6.2
version/linux kernel/6.7
version/linux kernel/6.11-rc1
version/linux kernel/6.11-rc2
version/linux kernel/6.11-rc3

CVE-2024-44998: atm: idt77252: prevent use after free in dequeue_rx()

Remedy

Remedy

Remedy

Remedy

Remedy

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2024-44998?

How do I fix CVE-2024-44998?

Which versions of the Linux kernel are affected by CVE-2024-44998?

What type of vulnerability is CVE-2024-44998?

Is there a workaround for CVE-2024-44998?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2024-44998?

How do I fix CVE-2024-44998?

Which versions of the Linux kernel are affected by CVE-2024-44998?

What type of vulnerability is CVE-2024-44998?

Is there a workaround for CVE-2024-44998?