NVD Vulnerability Detail

CVE-2024-44944

Summary	In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: use helper function to calculate expect ID Delete expectation path is missing a call to the nf_expect_get_id() helper function to calculate the expectation ID, otherwise LSB of the expectation object address is leaked to userspace.
Publication Date	Aug. 30, 2024, 5:15 p.m.
Registration Date	Aug. 30, 2024, 8 p.m.
Last Update	Sept. 10, 2024, 5:15 p.m.

Affected software configurations

Related information, measures and tools

No	URL	タグ
1	https://git.kernel.org/stable/c/66e7650dbbb8e236e781c670b167edc81e771450	Patch
2	https://git.kernel.org/stable/c/64c0b8e64be8368617ef08dfc59a3160563a1435	Patch
3	https://git.kernel.org/stable/c/eb4ca1a97e08ff5b920664ba292e576257e2d184	Patch
4	https://git.kernel.org/stable/c/5e2c24f7b0911b15c29aefce760bcf770542fb61	Patch
5	https://git.kernel.org/stable/c/24f407042cf90b0872de667460230d8d50c06c39	Patch
6	https://git.kernel.org/stable/c/27662b46f2adaa52c1665a82af4b21c42c4337fd	Patch
7	https://git.kernel.org/stable/c/74de442b8e12a207c07953ee068009a7701aff8f	Patch
8	https://git.kernel.org/stable/c/782161895eb4ac45cf7cfa8db375bd4766cb8299	Patch
9	https://www.zerodayinitiative.com/advisories/ZDI-24-1182/

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-401	有効期限後のメモリの解放の欠如	https://cwe.mitre.org/data/definitions/401.html

JVN Vulnerability Information

Linux の Linux Kernel における有効期限後のメモリの解放の欠如に関する脆弱性

Title	Linux の Linux Kernel における有効期限後のメモリの解放の欠如に関する脆弱性
Summary	Linux の Linux Kernel には、有効期限後のメモリの解放の欠如に関する脆弱性が存在します。
Possible impacts	サービス運用妨害 (DoS) 状態にされる可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	July 17, 2024, midnight
Registration Date	Sept. 4, 2024, 4:47 p.m.
Last Update	Sept. 2, 2025, 11:37 a.m.

Affected System

Linux

Linux Kernel 4.19.320

Linux Kernel 5.1

Linux Kernel 5.11 以上 5.15.165 未満

Linux Kernel 5.16 以上 6.1.103 未満

Linux Kernel 5.2 以上 5.4.282 未満

Linux Kernel 5.5 以上 5.10.224 未満

Linux Kernel 6.2 以上 6.6.44 未満

Linux Kernel 6.7 以上 6.10.3 未満

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2024-44944	https://www.cve.org/CVERecord?id=CVE-2024-44944
National Vulnerability Database (NVD)
2	CVE-2024-44944	https://nvd.nist.gov/vuln/detail/CVE-2024-44944

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-401	https://cwe.mitre.org/data/definitions/401.html

ベンダー情報

No	Name	URL
Kernel.org git repositories
1	netfilter: ctnetlink: use helper function to calculate expect ID (24f4070)	https://git.kernel.org/stable/c/24f407042cf90b0872de667460230d8d50c06c39
2	netfilter: ctnetlink: use helper function to calculate expect ID (27662b4)	https://git.kernel.org/stable/c/27662b46f2adaa52c1665a82af4b21c42c4337fd
3	netfilter: ctnetlink: use helper function to calculate expect ID (5e2c24f)	https://git.kernel.org/stable/c/5e2c24f7b0911b15c29aefce760bcf770542fb61
4	netfilter: ctnetlink: use helper function to calculate expect ID (64c0b8e)	https://git.kernel.org/stable/c/64c0b8e64be8368617ef08dfc59a3160563a1435
5	netfilter: ctnetlink: use helper function to calculate expect ID (66e7650)	https://git.kernel.org/stable/c/66e7650dbbb8e236e781c670b167edc81e771450
6	netfilter: ctnetlink: use helper function to calculate expect ID (74de442)	https://git.kernel.org/stable/c/74de442b8e12a207c07953ee068009a7701aff8f
7	netfilter: ctnetlink: use helper function to calculate expect ID (7821618)	https://git.kernel.org/stable/c/782161895eb4ac45cf7cfa8db375bd4766cb8299
8	netfilter: ctnetlink: use helper function to calculate expect ID (eb4ca1a)	https://git.kernel.org/stable/c/eb4ca1a97e08ff5b920664ba292e576257e2d184
Linux Kernel
9	Linux Kernel Archives	https://www.kernel.org

その他

No	Name	URL
ICS-CERT ADVISORY
1	ICSA-25-226-07	https://www.cisa.gov/news-events/ics-advisories/icsa-25-226-07
JVN
2	JVNVU#92169998	https://jvn.jp/vu/JVNVU92169998/index.html

Change Log

No	Changed Details	Date of change
1	[2024年09月04日] 掲載	Sept. 4, 2024, 4:02 p.m.
2	[2025年08月18日] 参考情報：JVN (JVNVU#92169998) を追加参考情報：ICS-CERT ADVISORY (ICSA-25-226-07) を追加	Aug. 18, 2025, 5:40 p.m.