Summary: A severe out-of-bounds access vulnerability in the Linux kernel, tracked as CVE-2024-53141, has been disclosed with a CVSS score of 7.8. This flaw, linked to the bitmap_ip_uadt function in the netfilter subsystemโs ipset component, enables privilege escalation and arbitrary code execution through a multi-stage exploitation process. A proof-of-concept exploit is already available, emphasizing the urgency for affected systems to update their kernel versions.
Affected: Linux Kernel (versions v2.7 through v6.12)
Keypoints :
- Critical out-of-bounds access flaw in the netfilter subsystemโs ipset component.
- Exploitation can lead to kernel crashes, privilege escalation, and arbitrary code execution.
- Multi-stage exploitation process includes heap leaking and use-after-free attacks for control flow hijacking.
- A proof-of-concept exploit is available on GitHub, necessitating urgent updates to patched kernel versions.