Armis Vulnerability Intelligence Database

Description Preview

The vulnerability in the Linux kernel identified as CVE-2024-47710 is specifically related to the sock_map module. When a map with a large number of buckets is destroyed, the CPU may not yield when necessary, leading to a soft lockup issue. This vulnerability has been addressed by adding a cond_resched() function in sock_hash_free() to ensure proper CPU handling during the destruction of maps with a large number of buckets.

Overview

This vulnerability affects the Linux kernel versions 5bed77b0a2a0e6b6bc0ae8e851cafb38ef0374df to bc05f6855642cff3c0eeb63060b35d8c4f8a851d, as well as versions 75e68e5bf2c7fa9d3e874099139df03d5952a3e1 to b1339be951ad31947ae19bc25cb08769bf255100. It results in a soft lockup issue when destroying maps with a large number of buckets.

Remediation

To remediate this vulnerability, users are advised to update their Linux kernel to versions that are not affected by the issue. Specifically, versions 5.8 and above are unaffected, while versions 5.4.285, 5.10.227, 5.15.168, 6.1.113, 6.6.54, 6.10.13, 6.11.2, and 6.12 are also not impacted. Users should ensure they are running a kernel version that falls within the unaffected range to mitigate the risk of exploitation.

References

https://git.kernel.org/stable/c/bc05f6855642cff3c0eeb63060b35d8c4f8a851d
https://git.kernel.org/stable/c/1a11a1a53255ddab8a903cdae01b9d3eb2c1a47b
https://git.kernel.org/stable/c/984648aac87a6a1c8fd61663bec3f7b61eafad5e
https://git.kernel.org/stable/c/04f62c012e0e4683e572b30baf6004ca0a3f6772
https://git.kernel.org/stable/c/80bd490ac0a3b662a489e17d8eedeb1e905a3d40
https://git.kernel.org/stable/c/ae8c1b3e7353ad240b829eabac7ba2584b2c6bdc
https://git.kernel.org/stable/c/cd10abf41bae55c9d2b93f34a516dbf52626bcb7
https://git.kernel.org/stable/c/b1339be951ad31947ae19bc25cb08769bf255100

Industry ExposureMost to least
This section illustrates the prevalence of a specific Common Vulnerabilities and Exposures (CVE) across various industries based on customer reports. The ranking displays industries from the most to least affected by this particular vulnerability, offering valuable insight into where this CVE has been most frequently observed. This information can help organizations within these sectors prioritize their security efforts, understand their relative risk exposure compared to their peers, and focus remediation strategies where they are most needed. By understanding the industry-specific impact, organizations can make more informed decisions regarding patching, resource allocation, and overall risk management related to this CVE.

Manufacturing
Manufacturing
Health Care & Social Assistance
Health Care & Social Assistance
Public Administration
Public Administration
Finance and Insurance
Finance and Insurance
Professional, Scientific, & Technical Services
Professional, Scientific, & Technical Services
Transportation & Warehousing
Transportation & Warehousing
Educational Services
Educational Services
Retail Trade
Retail Trade
Arts, Entertainment & Recreation
Arts, Entertainment & Recreation
Management of Companies & Enterprises
Management of Companies & Enterprises
Other Services (except Public Administration)
Other Services (except Public Administration)
Utilities
Utilities
Information
Information
Agriculture, Forestry Fishing & Hunting
Agriculture, Forestry Fishing & Hunting
Construction
Construction
Mining
Mining
Real Estate Rental & Leasing
Real Estate Rental & Leasing
Wholesale Trade
Wholesale Trade
Accommodation & Food Services
Accommodation & Food Services
Administrative, Support, Waste Management & Remediation Services
Administrative, Support, Waste Management & Remediation Services

^{CVE-2024-47710:}CVE-2024-47710 is a vulnerability in the Linux kernel related to the sock_map module that allows for a denial of service attack.

Description Preview

Overview

Remediation

References

Focus on What Matters

Let's talk!