[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2024-41040":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":20,"aliases":21,"duplicate_of":9,"upstream":22,"downstream":23,"duplicates":88,"related":89,"reserved_at":9,"published_at":100,"modified_at":101,"state":102,"summary":103,"references_raw":111,"kevs":142,"epss":143,"epss_history":146,"metrics":395,"affected":401},"CVE-2024-41040","In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: Fix UAF when resolving a clash\n\nKASAN reports the following UAF:\n\n BUG: KASAN: slab-use-after-free in tcf_ct_flow_table_process_conn+0x12b/0x380 [act_ct]\n Read of size 1 at addr ffff888c07603600 by task handler130/6469\n\n Call Trace:\n  \u003CIRQ>\n  dump_stack_lvl+0x48/0x70\n  print_address_description.constprop.0+0x33/0x3d0\n  print_report+0xc0/0x2b0\n  kasan_report+0xd0/0x120\n  __asan_load1+0x6c/0x80\n  tcf_ct_flow_table_process_conn+0x12b/0x380 [act_ct]\n  tcf_ct_act+0x886/0x1350 [act_ct]\n  tcf_action_exec+0xf8/0x1f0\n  fl_classify+0x355/0x360 [cls_flower]\n  __tcf_classify+0x1fd/0x330\n  tcf_classify+0x21c/0x3c0\n  sch_handle_ingress.constprop.0+0x2c5/0x500\n  __netif_receive_skb_core.constprop.0+0xb25/0x1510\n  __netif_receive_skb_list_core+0x220/0x4c0\n  netif_receive_skb_list_internal+0x446/0x620\n  napi_complete_done+0x157/0x3d0\n  gro_cell_poll+0xcf/0x100\n  __napi_poll+0x65/0x310\n  net_rx_action+0x30c/0x5c0\n  __do_softirq+0x14f/0x491\n  __irq_exit_rcu+0x82/0xc0\n  irq_exit_rcu+0xe/0x20\n  common_interrupt+0xa1/0xb0\n  \u003C/IRQ>\n  \u003CTASK>\n  asm_common_interrupt+0x27/0x40\n\n Allocated by task 6469:\n  kasan_save_stack+0x38/0x70\n  kasan_set_track+0x25/0x40\n  kasan_save_alloc_info+0x1e/0x40\n  __kasan_krealloc+0x133/0x190\n  krealloc+0xaa/0x130\n  nf_ct_ext_add+0xed/0x230 [nf_conntrack]\n  tcf_ct_act+0x1095/0x1350 [act_ct]\n  tcf_action_exec+0xf8/0x1f0\n  fl_classify+0x355/0x360 [cls_flower]\n  __tcf_classify+0x1fd/0x330\n  tcf_classify+0x21c/0x3c0\n  sch_handle_ingress.constprop.0+0x2c5/0x500\n  __netif_receive_skb_core.constprop.0+0xb25/0x1510\n  __netif_receive_skb_list_core+0x220/0x4c0\n  netif_receive_skb_list_internal+0x446/0x620\n  napi_complete_done+0x157/0x3d0\n  gro_cell_poll+0xcf/0x100\n  __napi_poll+0x65/0x310\n  net_rx_action+0x30c/0x5c0\n  __do_softirq+0x14f/0x491\n\n Freed by task 6469:\n  kasan_save_stack+0x38/0x70\n  kasan_set_track+0x25/0x40\n  kasan_save_free_info+0x2b/0x60\n  ____kasan_slab_free+0x180/0x1f0\n  __kasan_slab_free+0x12/0x30\n  slab_free_freelist_hook+0xd2/0x1a0\n  __kmem_cache_free+0x1a2/0x2f0\n  kfree+0x78/0x120\n  nf_conntrack_free+0x74/0x130 [nf_conntrack]\n  nf_ct_destroy+0xb2/0x140 [nf_conntrack]\n  __nf_ct_resolve_clash+0x529/0x5d0 [nf_conntrack]\n  nf_ct_resolve_clash+0xf6/0x490 [nf_conntrack]\n  __nf_conntrack_confirm+0x2c6/0x770 [nf_conntrack]\n  tcf_ct_act+0x12ad/0x1350 [act_ct]\n  tcf_action_exec+0xf8/0x1f0\n  fl_classify+0x355/0x360 [cls_flower]\n  __tcf_classify+0x1fd/0x330\n  tcf_classify+0x21c/0x3c0\n  sch_handle_ingress.constprop.0+0x2c5/0x500\n  __netif_receive_skb_core.constprop.0+0xb25/0x1510\n  __netif_receive_skb_list_core+0x220/0x4c0\n  netif_receive_skb_list_internal+0x446/0x620\n  napi_complete_done+0x157/0x3d0\n  gro_cell_poll+0xcf/0x100\n  __napi_poll+0x65/0x310\n  net_rx_action+0x30c/0x5c0\n  __do_softirq+0x14f/0x491\n\nThe ct may be dropped if a clash has been resolved but is still passed to\nthe tcf_ct_flow_table_process_conn function for further usage. This issue\ncan be fixed by retrieving ct from skb again after confirming conntrack.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-416","Use After Free","The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory \"belongs\" to the code that operates on the new pointer.","weakness","Stable","Variant","High",[],[],[],[],[24,26,28,30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64,66,68,70,72,74,76,78,80,82,84,86],{"_key":25},"SUSE-SU-2024:2894-1",{"_key":27},"SUSE-SU-2024:2939-1",{"_key":29},"SUSE-SU-2024:2947-1",{"_key":31},"SUSE-SU-2024:3194-1",{"_key":33},"SUSE-SU-2024:3195-1",{"_key":35},"SUSE-SU-2024:3383-1",{"_key":37},"DLA-4008-1",{"_key":39},"DSA-5747-1",{"_key":41},"SUSE-SU-2025:20044-1",{"_key":43},"SUSE-SU-2025:20047-1",{"_key":45},"MGASA-2024-0277",{"_key":47},"MGASA-2024-0278",{"_key":49},"DEBIAN-CVE-2024-41040",{"_key":51},"RHSA-2024:7000",{"_key":53},"RHSA-2024:7001",{"_key":55},"RHSA-2024:8107",{"_key":57},"RHSA-2025:0063",{"_key":59},"RHSA-2025:0064",{"_key":61},"RHSA-2024:6567",{"_key":63},"UBUNTU-CVE-2024-41040",{"_key":65},"USN-6999-1",{"_key":67},"USN-6999-2",{"_key":69},"USN-7004-1",{"_key":71},"USN-7005-1",{"_key":73},"USN-7005-2",{"_key":75},"USN-7007-1",{"_key":77},"USN-7007-2",{"_key":79},"USN-7007-3",{"_key":81},"USN-7008-1",{"_key":83},"USN-7009-1",{"_key":85},"USN-7009-2",{"_key":87},"USN-7019-1",[],[90,91,92,93,94,95,96,97,98,99],{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":41},{"_key":43},{"_key":45},{"_key":47},"2024-07-29T14:31:53.853Z","2026-05-23T15:51:38.843Z","Modified",{"cisa_kev":104,"cisa_ransomware":104,"cisa_vendor":9,"epss_severity":105,"epss_score":106,"severity":107,"severity_score":4,"severity_version":108,"severity_source":109,"severity_vector":110,"severity_status":102},false,"low",0.00015,"high","v3.1","nvd","CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",[112,118,122,126,130,134,138],{"url":113,"sources":114,"tags":116},"https://git.kernel.org/stable/c/b81a523d54ea689414f67c9fb81a5b917a41ed55",[115,109],"cve.org",[117],"Patch",{"url":119,"sources":120,"tags":121},"https://git.kernel.org/stable/c/2b4d68df3f57ea746c430941ba9c03d7d8b5a23f",[115,109],[117],{"url":123,"sources":124,"tags":125},"https://git.kernel.org/stable/c/4e71b10a100861fb27d9c5755dfd68f615629fae",[115,109],[117],{"url":127,"sources":128,"tags":129},"https://git.kernel.org/stable/c/799a34901b634008db4a7ece3900e2b971d4c932",[115,109],[117],{"url":131,"sources":132,"tags":133},"https://git.kernel.org/stable/c/ef472cc6693b16b202a916482df72f35d94bd69e",[115,109],[117],{"url":135,"sources":136,"tags":137},"https://git.kernel.org/stable/c/26488172b0292bed837b95a006a3f3431d1898c3",[115,109],[117],{"url":139,"sources":140,"tags":141},"https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html",[115,109],[],[],{"date":144,"score":106,"percentile":145},"2026-06-03",0.03082,[147,151,154,157,160,163,166,169,171,173,176,179,182,184,187,191,194,197,200,202,205,208,211,214,217,219,222,225,228,231,234,237,240,243,246,248,251,254,257,260,263,265,268,271,273,276,278,280,283,286,288,290,293,296,298,300,303,305,308,310,312,315,318,320,322,324,326,329,333,336,339,342,344,347,350,353,356,359,362,365,367,370,373,375,378,381,383,386,389,392],{"date":148,"score":149,"percentile":150},"2025-11-04",0.00013,0.01377,{"date":152,"score":149,"percentile":153},"2025-11-05",0.01402,{"date":155,"score":149,"percentile":156},"2025-11-06",0.01419,{"date":158,"score":149,"percentile":159},"2025-11-07",0.01425,{"date":161,"score":149,"percentile":162},"2025-11-08",0.01428,{"date":164,"score":149,"percentile":165},"2025-11-09",0.01427,{"date":167,"score":149,"percentile":168},"2025-11-10",0.01408,{"date":170,"score":149,"percentile":156},"2025-11-11",{"date":172,"score":149,"percentile":159},"2025-11-12",{"date":174,"score":149,"percentile":175},"2025-11-13",0.01436,{"date":177,"score":149,"percentile":178},"2025-11-14",0.01443,{"date":180,"score":149,"percentile":181},"2025-11-15",0.01464,{"date":183,"score":149,"percentile":181},"2025-11-16",{"date":185,"score":149,"percentile":186},"2025-11-17",0.01454,{"date":188,"score":189,"percentile":190},"2025-11-18",0.00092,0.22324,{"date":192,"score":189,"percentile":193},"2025-11-19",0.22334,{"date":195,"score":189,"percentile":196},"2025-11-20",0.22341,{"date":198,"score":149,"percentile":199},"2025-11-21",0.01518,{"date":201,"score":149,"percentile":199},"2025-11-22",{"date":203,"score":149,"percentile":204},"2025-11-23",0.01504,{"date":206,"score":149,"percentile":207},"2025-11-24",0.01499,{"date":209,"score":149,"percentile":210},"2025-11-25",0.01486,{"date":212,"score":149,"percentile":213},"2025-11-26",0.0143,{"date":215,"score":149,"percentile":216},"2025-11-27",0.01429,{"date":218,"score":149,"percentile":162},"2025-11-28",{"date":220,"score":149,"percentile":221},"2025-11-29",0.01467,{"date":223,"score":149,"percentile":224},"2025-11-30",0.01477,{"date":226,"score":149,"percentile":227},"2025-12-01",0.01506,{"date":229,"score":149,"percentile":230},"2025-12-02",0.015,{"date":232,"score":149,"percentile":233},"2025-12-03",0.01501,{"date":235,"score":149,"percentile":236},"2025-12-04",0.01475,{"date":238,"score":149,"percentile":239},"2025-12-05",0.01487,{"date":241,"score":149,"percentile":242},"2025-12-06",0.01489,{"date":244,"score":149,"percentile":245},"2025-12-07",0.01482,{"date":247,"score":149,"percentile":245},"2025-12-08",{"date":249,"score":149,"percentile":250},"2025-12-09",0.01497,{"date":252,"score":149,"percentile":253},"2025-12-10",0.01511,{"date":255,"score":149,"percentile":256},"2025-12-11",0.01507,{"date":258,"score":149,"percentile":259},"2025-12-12",0.0151,{"date":261,"score":149,"percentile":262},"2025-12-13",0.01493,{"date":264,"score":149,"percentile":210},"2025-12-14",{"date":266,"score":149,"percentile":267},"2025-12-15",0.01481,{"date":269,"score":149,"percentile":270},"2025-12-16",0.0149,{"date":272,"score":149,"percentile":250},"2025-12-17",{"date":274,"score":149,"percentile":275},"2025-12-18",0.01495,{"date":277,"score":149,"percentile":233},"2025-12-19",{"date":279,"score":149,"percentile":233},"2025-12-20",{"date":281,"score":149,"percentile":282},"2025-12-21",0.01512,{"date":284,"score":149,"percentile":285},"2025-12-22",0.01513,{"date":287,"score":149,"percentile":259},"2025-12-23",{"date":289,"score":149,"percentile":282},"2025-12-24",{"date":291,"score":149,"percentile":292},"2025-12-25",0.01517,{"date":294,"score":149,"percentile":295},"2025-12-26",0.0152,{"date":297,"score":149,"percentile":285},"2025-12-27",{"date":299,"score":149,"percentile":285},"2025-12-28",{"date":301,"score":149,"percentile":302},"2025-12-29",0.01505,{"date":304,"score":149,"percentile":207},"2025-12-30",{"date":306,"score":149,"percentile":307},"2025-12-31",0.01496,{"date":309,"score":149,"percentile":292},"2026-01-01",{"date":311,"score":149,"percentile":295},"2026-01-02",{"date":313,"score":149,"percentile":314},"2026-01-03",0.01523,{"date":316,"score":149,"percentile":317},"2026-01-04",0.01492,{"date":319,"score":149,"percentile":207},"2026-01-05",{"date":321,"score":149,"percentile":262},"2026-01-06",{"date":323,"score":149,"percentile":230},"2026-01-07",{"date":325,"score":149,"percentile":285},"2026-01-08",{"date":327,"score":149,"percentile":328},"2026-01-09",0.01528,{"date":330,"score":331,"percentile":332},"2026-01-10",0.00012,0.01247,{"date":334,"score":331,"percentile":335},"2026-01-11",0.01246,{"date":337,"score":331,"percentile":338},"2026-01-12",0.01252,{"date":340,"score":331,"percentile":341},"2026-01-13",0.01248,{"date":343,"score":331,"percentile":332},"2026-01-14",{"date":345,"score":331,"percentile":346},"2026-01-15",0.01261,{"date":348,"score":331,"percentile":349},"2026-01-16",0.01266,{"date":351,"score":331,"percentile":352},"2026-01-17",0.01267,{"date":354,"score":331,"percentile":355},"2026-01-18",0.01281,{"date":357,"score":331,"percentile":358},"2026-01-19",0.01275,{"date":360,"score":331,"percentile":361},"2026-01-20",0.01262,{"date":363,"score":331,"percentile":364},"2026-01-21",0.01259,{"date":366,"score":331,"percentile":364},"2026-01-22",{"date":368,"score":331,"percentile":369},"2026-01-23",0.01272,{"date":371,"score":331,"percentile":372},"2026-01-24",0.01276,{"date":374,"score":331,"percentile":358},"2026-01-25",{"date":376,"score":331,"percentile":377},"2026-01-26",0.01274,{"date":379,"score":331,"percentile":380},"2026-01-27",0.01264,{"date":382,"score":331,"percentile":361},"2026-01-28",{"date":384,"score":331,"percentile":385},"2026-01-29",0.01268,{"date":387,"score":331,"percentile":388},"2026-01-30",0.0127,{"date":390,"score":331,"percentile":391},"2026-01-31",0.01286,{"date":393,"score":331,"percentile":394},"2026-02-01",0.0131,[396],{"source":109,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":397,"cvss_v4_0":9},{"baseScore":4,"baseSeverity":398,"vectorString":110,"impactScore":399,"exploitabilityScore":400},"HIGH",9.8,2.6,[402,441],{"ecosystem":9,"name":403,"vendor":404,"product":404,"cpe_part":405,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":406},"Linux","linux","a",[407,414,418,421,424,427,430,432,436,440],{"version":408,"is_range":409,"range_type":115,"version_start":410,"version_start_type":411,"version_end":412,"version_end_type":413,"fixed_in":9},">= f07c548314776231f0d47d73ec6caa5b17e876e8, \u003C b81a523d54ea689414f67c9fb81a5b917a41ed55",true,"f07c548314776231f0d47d73ec6caa5b17e876e8","including","b81a523d54ea689414f67c9fb81a5b917a41ed55","excluding",{"version":415,"is_range":409,"range_type":115,"version_start":416,"version_start_type":411,"version_end":417,"version_end_type":413,"fixed_in":9},">= 0cc254e5aa37cf05f65bcdcdc0ac5c58010feb33, \u003C 2b4d68df3f57ea746c430941ba9c03d7d8b5a23f","0cc254e5aa37cf05f65bcdcdc0ac5c58010feb33","2b4d68df3f57ea746c430941ba9c03d7d8b5a23f",{"version":419,"is_range":409,"range_type":115,"version_start":416,"version_start_type":411,"version_end":420,"version_end_type":413,"fixed_in":9},">= 0cc254e5aa37cf05f65bcdcdc0ac5c58010feb33, \u003C 4e71b10a100861fb27d9c5755dfd68f615629fae","4e71b10a100861fb27d9c5755dfd68f615629fae",{"version":422,"is_range":409,"range_type":115,"version_start":416,"version_start_type":411,"version_end":423,"version_end_type":413,"fixed_in":9},">= 0cc254e5aa37cf05f65bcdcdc0ac5c58010feb33, \u003C 799a34901b634008db4a7ece3900e2b971d4c932","799a34901b634008db4a7ece3900e2b971d4c932",{"version":425,"is_range":409,"range_type":115,"version_start":416,"version_start_type":411,"version_end":426,"version_end_type":413,"fixed_in":9},">= 0cc254e5aa37cf05f65bcdcdc0ac5c58010feb33, \u003C ef472cc6693b16b202a916482df72f35d94bd69e","ef472cc6693b16b202a916482df72f35d94bd69e",{"version":428,"is_range":409,"range_type":115,"version_start":416,"version_start_type":411,"version_end":429,"version_end_type":413,"fixed_in":9},">= 0cc254e5aa37cf05f65bcdcdc0ac5c58010feb33, \u003C 26488172b0292bed837b95a006a3f3431d1898c3","26488172b0292bed837b95a006a3f3431d1898c3",{"version":431,"is_range":104,"range_type":115,"version_start":431,"version_start_type":411,"version_end":431,"version_end_type":411,"fixed_in":9},"30822781c89943b6a3ed122324ceb37cea7042a3",{"version":433,"is_range":409,"range_type":115,"version_start":434,"version_start_type":411,"version_end":435,"version_end_type":413,"fixed_in":9},">= 5.10.43, \u003C 5.10.222","5.10.43","5.10.222",{"version":437,"is_range":409,"range_type":115,"version_start":438,"version_start_type":411,"version_end":439,"version_end_type":413,"fixed_in":9},">= 5.12.10, \u003C 5.13","5.12.10","5.13",{"version":439,"is_range":104,"range_type":115,"version_start":439,"version_start_type":411,"version_end":439,"version_end_type":411,"fixed_in":9},{"ecosystem":9,"name":442,"vendor":404,"product":443,"cpe_part":444,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":445},"linux kernel","linux_kernel","o",[446,449,451,454,458,462],{"version":447,"is_range":409,"range_type":448,"version_start":434,"version_start_type":411,"version_end":435,"version_end_type":413,"fixed_in":9},"gte5.10.43_lt5.10.222","cpe",{"version":450,"is_range":409,"range_type":448,"version_start":438,"version_start_type":411,"version_end":439,"version_end_type":413,"fixed_in":9},"gte5.12.10_lt5.13",{"version":452,"is_range":409,"range_type":448,"version_start":439,"version_start_type":411,"version_end":453,"version_end_type":413,"fixed_in":9},"gte5.13_lt5.15.163","5.15.163",{"version":455,"is_range":409,"range_type":448,"version_start":456,"version_start_type":411,"version_end":457,"version_end_type":413,"fixed_in":9},"gte5.16_lt6.1.100","5.16","6.1.100",{"version":459,"is_range":409,"range_type":448,"version_start":460,"version_start_type":411,"version_end":461,"version_end_type":413,"fixed_in":9},"gte6.2_lt6.6.41","6.2","6.6.41",{"version":463,"is_range":409,"range_type":448,"version_start":464,"version_start_type":411,"version_end":465,"version_end_type":413,"fixed_in":9},"gte6.7_lt6.9.10","6.7","6.9.10"]