Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog Docs About Contact
7
CVSSv3

CVE-2024-50036

CVSSv4: NA | CVSSv3: 7 | CVSSv2: NA | VMScore: 800 | EPSS: 0.00037 | KEV: Not Included
Published: 21/10/2024 Updated: 17/11/2024

Vulnerability Summary

Race Condition Patch in Linux Kernel's Network Subsystem

The Linux kernel had a vulnerability which is now fixed. It was related to net: do not delay dst_entries_add() in dst_release(). The problem occurred because dst_entries_add() used per-cpu data, which might be freed during network namespace dismantle from ip6_route_net_exit() calling dst_entries_destroy(). Before ip6_route_net_exit() runs, all dsts linked to the netns are released by calling dst_release(). This waits for an RCU grace period before executing dst_destroy(). The usage of dst_entries_add() in dst_destroy() was problematic because dst_entries_destroy() might have been called already. Decrementing the number of dsts needed to happen earlier. Some points to note are: 1) In the CONFIG_XFRM case, dst_destroy() can call dst_release_immediate(child). This can also potentially cause use-after-free if the child doesn’t have DST_NOCOUNT set. IPSEC maintainers could examine this for solutions. 2) There is a conversation about possibly removing this dst count, which could occur in future kernel versions.

Vulnerable Product Search on Vulmon Subscribe to Product

linux linux

linux linux kernel

linux linux kernel 6.12

Vendor Advisories

Amazon Linux AMI: ALAS-2025-802
In the Linux kernel, the following vulnerability has been resolved: io_uring: fix possible deadlock in io_register_iowq_max_workers() (CVE-2024-41080) In the Linux kernel, the following vulnerability has been resolved: ext4: fix timer use-after-free on failed mount (CVE-2024-49960) In the Linux kernel, the following vulnerability has been resolved: ...
Amazon Linux 2: ALASKERNEL-5.10-2025-078
In the Linux kernel, the following vulnerability has been resolved: net: do not delay dst_entries_add() in dst_release() (CVE-2024-50036) In the Linux kernel, the following vulnerability has been resolved: net: sched: fix use-after-free in taprio_change() (CVE-2024-50127) In the Linux kernel, the following vulnerability has been resolved: tracing: ...
Amazon Linux 2: ALASKERNEL-5.4-2025-100
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix use-after-free of encap entry in neigh update handler (CVE-2021-47247) In the Linux kernel, the following vulnerability has been resolved: scsi: iscsi_tcp: Fix UAF during logout when accessing the shost ipaddress (CVE-2023-52975) In the Linux kernel, the following vu ...
Amazon Linux 2: ALASLIVEPATCH-2025-227
In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix potential oob read in nilfs_btree_check_delete() (CVE-2024-47757) In the Linux kernel, the following vulnerability has been resolved: ext4: fix double brelse() the buffer of the extents path (CVE-2024-49882) In the Linux kernel, the following vulnerability has been reso ...
Amazon Linux 2: ALASLIVEPATCH-2025-228
In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix potential oob read in nilfs_btree_check_delete() (CVE-2024-47757) In the Linux kernel, the following vulnerability has been resolved: ext4: fix double brelse() the buffer of the extents path (CVE-2024-49882) In the Linux kernel, the following vulnerability has been reso ...
Amazon Linux 2: ALASLIVEPATCH-2025-225
In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix potential oob read in nilfs_btree_check_delete() (CVE-2024-47757) In the Linux kernel, the following vulnerability has been resolved: ext4: fix double brelse() the buffer of the extents path (CVE-2024-49882) In the Linux kernel, the following vulnerability has been reso ...
Amazon Linux 2: ALASLIVEPATCH-2025-224
In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix potential oob read in nilfs_btree_check_delete() (CVE-2024-47757) In the Linux kernel, the following vulnerability has been resolved: ext4: fix double brelse() the buffer of the extents path (CVE-2024-49882) In the Linux kernel, the following vulnerability has been reso ...
Amazon Linux 2: ALASLIVEPATCH-2025-226
In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix potential oob read in nilfs_btree_check_delete() (CVE-2024-47757) In the Linux kernel, the following vulnerability has been resolved: ext4: fix double brelse() the buffer of the extents path (CVE-2024-49882) In the Linux kernel, the following vulnerability has been reso ...

References

NVD-CWE-noinfohttps://nvd.nist.govhttps://alas.aws.amazon.com/AL2023/ALAS-2025-802.htmlhttps://www.first.org/epsshttps://git.kernel.org/stable/c/3c7c918ec0aa3555372c5a57f18780b7a96c5cfchttps://git.kernel.org/stable/c/547087307bc19417b4f2bc85ba9664a3e8db5a6ahttps://git.kernel.org/stable/c/a60db84f772fc3a906c6c4072f9207579c41166fhttps://git.kernel.org/stable/c/ac888d58869bb99753e7652be19a151df9ecb35dhttps://git.kernel.org/stable/c/e3915f028b1f1c37e87542e5aadd33728c259d96https://git.kernel.org/stable/c/eae7435b48ffc8e9be0ff9cfeae40af479a609dd
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
adp application developer platform 应用开发者平台type confusionflirCVE-2025-6268overflowdir-825CVE-2025-6018CVE-2025-2783CVE-2025-6292webassemblyauthentication bypassCVE-2025-4479CVE-2025-6306
Home
/
Search Results
/
CVE-2024-50036
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook