ГлавнаяУязвимости → CVE-2024-40920
7.8высокая

CVE-2024-40920

→ есть в БДУ: BDU:2024-11520 (на русском)
Описание (на английском; русское — в БДУ выше)

In the Linux kernel, the following vulnerability has been resolved: net: bridge: mst: fix suspicious rcu usage in br_mst_set_state I converted br_mst_set_state to RCU to avoid a vlan use-after-free but forgot to change the vlan group dereference helper. Switch to vlan group RCU deref helper to fix the suspicious rcu usage warning.

Затрагиваемое ПО
Linux Linux kernel
CVSS
Балл7.8 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://git.kernel.org/stable/c/406bfc04b01ee47e4c626f77ecc7d9f85135b166https://git.kernel.org/stable/c/546ceb1dfdac866648ec959cbc71d9525bd73462https://git.kernel.org/stable/c/7caefa2771722e65496d85b62e1dc4442b7d1345https://git.kernel.org/stable/c/caaa2129784a04dcade0ea92c12e6ff90bbd23d8https://git.kernel.org/stable/c/406bfc04b01ee47e4c626f77ecc7d9f85135b166https://git.kernel.org/stable/c/546ceb1dfdac866648ec959cbc71d9525bd73462https://git.kernel.org/stable/c/7caefa2771722e65496d85b62e1dc4442b7d1345https://git.kernel.org/stable/c/caaa2129784a04dcade0ea92c12e6ff90bbd23d8