Vulnerability Details : CVE-2024-27390

In the Linux kernel, the following vulnerability has been resolved: ipv6: mcast: remove one synchronize_net() barrier in ipv6_mc_down() As discussed in the past (commit 2d3916f31891 ("ipv6: fix skb drops in igmp6_event_query() and igmp6_event_report()")) I think the synchronize_net() call in ipv6_mc_down() is not needed. Under load, synchronize_net() can last between 200 usec and 5 ms. KASAN seems to agree as well.
Published 2024-05-01 13:15:52
Updated 2024-05-01 19:50:26
Source Linux
View at NVD,   CVE.org

Products affected by CVE-2024-27390

Please log in to view affected product information.

Exploit prediction scoring system (EPSS) score for CVE-2024-27390

EPSS FAQ
0.15%
Probability of exploitation activity in the next 30 days EPSS Score History
~ 36 %
Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2024-27390

Base Score Base Severity CVSS Vector Exploitability Score Impact Score Score Source First Seen
5.5
 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
N/A
N/A
 RedHat-CVE-2024-27390 2024-05-02

References for CVE-2024-27390

Jump to
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close