Linux Kernel Vulnerability CVE-2024-36972 Disclosed
/ 1 min read
🛠️ Critical Linux Kernel Vulnerability Exposed: Immediate Action Required. Security researchers have disclosed a high-severity vulnerability (CVE-2024-36972) in the Linux kernel’s af_unix component, which could lead to kernel crashes, privilege escalation, and container escape. This double free vulnerability arises from a race condition in the unix_gc() function, affecting Linux kernel versions 6.8 to 6.9, 5.15.147, 6.1.78, and 6.6.17. A proof-of-concept exploit has been made available on GitHub, increasing the risk of exploitation by malicious actors. System administrators are urged to upgrade to patched versions immediately to mitigate potential threats. The vulnerability was introduced by a specific commit and has since been addressed in a subsequent fix.
