What is CVE-2024-53119?

CVE-2024-53119 is a Medium severity Linux kernel vulnerability with a CVSS score of 5.5 out of 10, classified as a Memory Leak flaw (CWE-401), affecting Linux kernel versions from 5.9.13 onward and patched in 5.10.232, 5.15.175, 6.1.119 and others. CVE-2024-53119 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

What is the CVSS score for CVE-2024-53119?

CVE-2024-53119 has a CVSS score of 5.5 out of 10, rated Medium severity. The vector string is CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H.

Is there a patch available for CVE-2024-53119?

Yes, CVE-2024-53119 has been patched. Fixed versions include 5.10.232, 5.15.175, 6.1.119 and others. If you are running Linux kernel 5.9.13 or later up to the fix versions, apply the relevant patch for your kernel branch.

Is CVE-2024-53119 actively exploited?

CVE-2024-53119 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

What is Memory Leak (CWE-401)?

The product does not release memory after use, causing gradual resource exhaustion. See MITRE CWE for full details: https://cwe.mitre.org/data/definitions/401.html

CVE-2024-53119

Medium

In the Linux kernel, the following vulnerability has been resolved: virtio/vsock: Fix accept_queue memory leak As the final stages of socket destruction may be delayed, it is possible that virtio_transport_recv_listen() will be called after the accept_queue has been flushed, but before the SOCK_DONE flag has been set. As a result, sockets enqueued after the flush would remain unremoved, leading to a memory leak. vsock_release __vsock_release lock virtio_transport_release virtio_transport_close schedule_delayed_work(close_work) sk_shutdown = SHUTDOWN_MASK (!) flush accept_queue release virtio_transport_recv_pkt vsock_find_bound_socket lock if flag(SOCK_DONE) return virtio_transport_recv_listen child = vsock_create_connected (!) vsock_enqueue_accept(child) release close_work lock virtio_transport_do_close set_flag(SOCK_DONE) virtio_transport_remove_sock vsock_remove_sock vsock_remove_bound release Introduce a sk_shutdown check to disallow vsock_enqueue_accept() during socket destruction. unreferenced object 0xffff888109e3f800 (size 2040): comm "kworker/5:2", pid 371, jiffies 4294940105 hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 28 00 0b 40 00 00 00 00 00 00 00 00 00 00 00 00 (..@............ backtrace (crc 9e5f4e84): [<ffffffff81418ff1>] kmem_cache_alloc_noprof+0x2c1/0x360 [<ffffffff81d27aa0>] sk_prot_alloc+0x30/0x120 [<ffffffff81d2b54c>] sk_alloc+0x2c/0x4b0 [<ffffffff81fe049a>] __vsock_create.constprop.0+0x2a/0x310 [<ffffffff81fe6d6c>] virtio_transport_recv_pkt+0x4dc/0x9a0 [<ffffffff81fe745d>] vsock_loopback_work+0xfd/0x140 [<ffffffff810fc6ac>] process_one_work+0x20c/0x570 [<ffffffff810fce3f>] worker_thread+0x1bf/0x3a0 [<ffffffff811070dd>] kthread+0xdd/0x110 [<ffffffff81044fdd>] ret_from_fork+0x2d/0x50 [<ffffffff8100785a>] ret_from_fork_asm+0x1a/0x30

Package Linux Kernel

Published 2024-12-02

Last modified 2025-11-03

CVSS version 3.1

Patch available

Yes

CVSS 3.1 score

5.5

out of 10

Medium

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

None

Availability

High

Vector string

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Weakness type

CWE-401

CVE-2024-53119 is a Memory Leak vulnerability

What is Memory Leak?

The product does not release memory after use, causing gradual resource exhaustion. Learn more on MITRE CWE

Affected versions

Linux kernel versions 5.9.13, 5.10 and later are affected. Fixed in 5.10.232, 5.15.175, 6.1.119, 6.6.63, 6.11.10, 6.12 and their respective stable series.

Affected from

≥ 5.9.13 ≥ 5.10

Fixed in

✓ 5.10.232 5.10.x ✓ 5.15.175 5.15.x ✓ 6.1.119 6.1.x ✓ 6.6.63 6.6.x ✓ 6.11.10 6.11.x ✓ 6.12

References

The following references provide additional information about CVE-2024-53119 including vendor advisories, patch commits, exploit details, and third-party analysis. Links are sourced from the NIST NVD database.

Debian Security
https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
Debian Security
https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html
Kernel patch commit
https://git.kernel.org/stable/c/2415345042245de7601dcc6eafdbe3a3dcc9e379
Patch
Kernel patch commit
https://git.kernel.org/stable/c/4310902c766e371359e6c6311056ae80b5beeac9
Patch
Kernel patch commit
https://git.kernel.org/stable/c/897617a413e0bf1c6380e3b34b2f28f450508549
Patch

6 patch commits total View all on NVD

Details

CVE ID CVE-2024-53119

Severity Medium

CVSS score 5.5 / 10

CVSS version 3.1

Published 2024-12-02

Modified 2025-11-03

KEV No

Patch

Yes

Package linux

Frequently asked questions

What is CVE-2024-53119?

CVE-2024-53119 is a Medium severity Linux kernel vulnerability with a CVSS score of 5.5 out of 10 , classified as a Memory Leak flaw (CWE-401) . It affects Linux kernel versions from 5.9.13 onward and has been patched in 5.10.232, 5.15.175, 6.1.119 and others. CVE-2024-53119 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.
What is the CVSS score for CVE-2024-53119?

CVE-2024-53119 has a CVSS score of 5.5 out of 10, rated Medium severity (CVSS 3.1). The vector string is CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H.
Is there a patch available for CVE-2024-53119?

Yes — CVE-2024-53119 has been patched. Fixed versions include 5.10.232, 5.15.175, 6.1.119 and others. If you are running Linux kernel 5.9.13 or later up to the fix versions, apply the relevant patch for your kernel branch.
Is CVE-2024-53119 actively exploited?

No — CVE-2024-53119 has not been confirmed as actively exploited. It is not listed in the CISA Known Exploited Vulnerabilities (KEV) catalog.
What is Memory Leak (CWE-401)?

The product does not release memory after use, causing gradual resource exhaustion. View CWE-401 on MITRE CWE →