September 11, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
An Emerging Ducktail Infostealer – Active IOCs
September 12, 2024
Lazarus Group Disseminates Malware via Fake Coding Tests to Target Developers
September 12, 2024
An Emerging Ducktail Infostealer – Active IOCs
September 12, 2024
Lazarus Group Disseminates Malware via Fake Coding Tests to Target Developers
September 12, 2024
Severity
Medium
Analysis Summary
CVE-2024-42272 CVSS:5.5
Linux Kernel is vulnerable to a denial of service, caused by a flaw related to padding in struct zones_ht_key. By sending a specially crafted request, a local authenticated attacker could exploit this vulnerability to cause a denial of service condition.
CVE-2024-43875 CVSS:5.5
Linux Kernel is vulnerable to a denial of service, caused by an inconsistent NULL checking in vpci_scan_bus(). By sending a specially crafted request, a local authenticated attacker could exploit this vulnerability to cause a denial of service condition.
CVE-2024-43889 CVSS:5.5
Linux Kernel is vulnerable to a denial of service, caused by a divide-by-zero panic in padata_mt_helper(). By sending a specially crafted request, a local authenticated attacker could exploit this vulnerability to cause a denial of service condition.
CVE-2024-36915 CVSS:5.5
Linux Kernel is vulnerable to a denial of service, caused by an out-of-bounds read due to unsafe copies in nfc_llcp_setsockopt(). By sending a specially crafted request, a local authenticated attacker could exploit this vulnerability to cause a denial of service condition.
Impact
- Denial of Service
Indicators of Compromise
CVE
- CVE-2024-42272
- CVE-2024-43875
- CVE-2024-43889
- CVE-2024-36915
Affected Vendors
Linux
Affected Products
- Linux Kernel 5.15
- Linux Kernel 6.1
- Linux Kernel 6.6
- Linux Kernel 6.8
- Linux Kernel 6.10
Remediation
Refer to Linux Kernel GIT Repository for patch, upgrade or suggested workaround information.