CVE-2024-39499 — In the Linux kernel, the following vulnerability has been resolved:
In the Linux kernel, the following vulnerability has been resolved:
Published
2024-07-12T12:20:33.658Z
Last modified
2025-11-03T21:56:17.161Z
01What is this vulnerability?
In the Linux kernel, the following vulnerability has been resolved:
02Affected products
| Vendor | Product | Versions |
|---|
| Linux | Linux | 1d990201f9bb499b7c76ab00abeb7e803c0bcb2a, 1d990201f9bb499b7c76ab00abeb7e803c0bcb2a, 1d990201f9bb499b7c76ab00abeb7e803c0bcb2a, 1d990201f9bb499b7c76ab00abeb7e803c0bcb2a, 1d990201f9bb499b7c76ab00abeb7e803c0bcb2a, 1d990201f9bb499b7c76ab00abeb7e803c0bcb2a, 1d990201f9bb499b7c76ab00abeb7e803c0bcb2a, 1d990201f9bb499b7c76ab00abeb7e803c0bcb2a |
| Linux | Linux | 3.9, 0, 4.19.317, 5.4.279, 5.10.221, 5.15.162, 6.1.95, 6.6.35, 6.9.6, 6.10 |
03Active exploitation status
Not currently listed on the CISA Known Exploited Vulnerabilities (KEV) catalog. EPSS is the best forward-looking signal — see the EPSS row above.
04Recommended remediation
- Patch to a fixed version listed in the vendor advisory (see references below).
- Mitigate with WAF rules, network egress filters, or feature flags where the patch is not yet available.
- Hunt historical logs for exploitation indicators — see Detection signatures below.
05Technical details
For the full vendor write-up, exploit chains, and reference implementations, see the references list in section 09.
06Detection signatures
Open the Sigma generator with a pre-filled prompt for this CVE to draft a starting detection in your stack of choice:
Open in Sigma generator →
07Related CVEs
No directly-cited follow-up CVEs in the KB record for this advisory. The references list in section 09 carries the vendor cross-references.
08Timeline
- Published: 2024-07-12T12:20:33.658Z
- Last modified: 2025-11-03T21:56:17.161Z
09References
- git.kernel.org — https://git.kernel.org/stable/c/58730dfbd4ae01c1b022b0d234a8bf8c02cdfb81
- git.kernel.org — https://git.kernel.org/stable/c/681967c4ff210e06380acf9b9a1b33ae06e77cbd
- git.kernel.org — https://git.kernel.org/stable/c/f70ff737346744633e7b655c1fb23e1578491ff3
- git.kernel.org — https://git.kernel.org/stable/c/95ac3e773a1f8da83c4710a720fbfe80055aafae
- git.kernel.org — https://git.kernel.org/stable/c/95bac1c8bedb362374ea1937b1d3e833e01174ee
- git.kernel.org — https://git.kernel.org/stable/c/e293c6b38ac9029d76ff0d2a6b2d74131709a9a8
- git.kernel.org — https://git.kernel.org/stable/c/757804e1c599af5d2a7f864c8e8b2842406ff4bb
- git.kernel.org — https://git.kernel.org/stable/c/8003f00d895310d409b2bf9ef907c56b42a4e0f4
Want this in your SOAR or SIEM?
SARA's API returns EPSS, CVSS, KEV, and an analyst-grade summary in one call.
Read the API reference →