CVE-2024-39487 — In the Linux kernel, the following vulnerability has been resolved:
In the Linux kernel, the following vulnerability has been resolved:
Published
2024-07-09T09:52:07.664Z
Last modified
2025-11-03T21:56:09.674Z
01What is this vulnerability?
In the Linux kernel, the following vulnerability has been resolved:
02Affected products
| Vendor | Product | Versions |
|---|
| Linux | Linux | f9de11a165943a55e0fbda714caf60eaeb276a42, f9de11a165943a55e0fbda714caf60eaeb276a42, f9de11a165943a55e0fbda714caf60eaeb276a42, f9de11a165943a55e0fbda714caf60eaeb276a42, f9de11a165943a55e0fbda714caf60eaeb276a42, f9de11a165943a55e0fbda714caf60eaeb276a42, f9de11a165943a55e0fbda714caf60eaeb276a42, f9de11a165943a55e0fbda714caf60eaeb276a42 |
| Linux | Linux | 3.13, 0, 4.19.318, 5.4.280, 5.10.222, 5.15.163, 6.1.98, 6.6.39, 6.9.9, 6.10 |
03Active exploitation status
Not currently listed on the CISA Known Exploited Vulnerabilities (KEV) catalog. EPSS is the best forward-looking signal — see the EPSS row above.
04Recommended remediation
- Patch to a fixed version listed in the vendor advisory (see references below).
- Mitigate with WAF rules, network egress filters, or feature flags where the patch is not yet available.
- Hunt historical logs for exploitation indicators — see Detection signatures below.
05Technical details
For the full vendor write-up, exploit chains, and reference implementations, see the references list in section 09.
06Detection signatures
Open the Sigma generator with a pre-filled prompt for this CVE to draft a starting detection in your stack of choice:
Open in Sigma generator →
07Related CVEs
No directly-cited follow-up CVEs in the KB record for this advisory. The references list in section 09 carries the vendor cross-references.
08Timeline
- Published: 2024-07-09T09:52:07.664Z
- Last modified: 2025-11-03T21:56:09.674Z
09References
- git.kernel.org — https://git.kernel.org/stable/c/6a8a4fd082c439e19fede027e80c79bc4c84bb8e
- git.kernel.org — https://git.kernel.org/stable/c/6b21346b399fd1336fe59233a17eb5ce73041ee1
- git.kernel.org — https://git.kernel.org/stable/c/707c85ba3527ad6aa25552033576b0f1ff835d7b
- git.kernel.org — https://git.kernel.org/stable/c/bfd14e5915c2669f292a31d028e75dcd82f1e7e9
- git.kernel.org — https://git.kernel.org/stable/c/c8eb8ab9a44ff0e73492d0a12a643c449f641a9f
- git.kernel.org — https://git.kernel.org/stable/c/b75e33eae8667084bd4a63e67657c6a5a0f8d1e8
- git.kernel.org — https://git.kernel.org/stable/c/9f835e48bd4c75fdf6a9cff3f0b806a7abde78da
- git.kernel.org — https://git.kernel.org/stable/c/e271ff53807e8f2c628758290f0e499dbe51cb3d
Want this in your SOAR or SIEM?
SARA's API returns EPSS, CVSS, KEV, and an analyst-grade summary in one call.
Read the API reference →