vulnerability

FreeBSD: VID-7E079CE2-6B51-11EF-9A62-002590C1F29C (CVE-2024-43102): FreeBSD -- umtx Kernel panic or Use-After-Free

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
10	(AV:N/AC:L/Au:N/C:C/I:C/A:C)	Sep 4, 2024	Sep 6, 2024	Jan 28, 2025

Severity

CVSS

(AV:N/AC:L/Au:N/C:C/I:C/A:C)

Published

Sep 4, 2024

Added

Sep 6, 2024

Modified

Jan 28, 2025

Description

Concurrent removals of certain anonymous shared memory mappings by using the UMTX_SHM_DESTROY sub-request of UMTX_OP_SHM can lead to decreasing the reference count of the object representing the mapping too many times, causing it to be freed too early.

A malicious code exercizing the UMTX_SHM_DESTROY sub-request in parallel can panic the kernel or enable further Use-After-Free attacks, potentially including code execution or Capsicum sandbox escape.

Solution(s)

freebsd-upgrade-base-13_3-release-p6freebsd-upgrade-base-14_0-release-p10freebsd-upgrade-base-14_1-release-p4

References

NVD-CVE-2024-43102

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today