kernel CVE-2024-1627
Package
kernel-5.10
(bottlerocket)
Affected versions
< 1.20.0
Patched versions
1.20.0
kernel-5.15
(bottlerocket)
< 1.20.0
1.20.0
kernel-6.1
(bottlerocket)
< 1.20.0
1.20.0
A flaw was discovered in the Linux kernel's IPv4 networking stack. Under certain conditions, MPTCP and NetLabel can be configured in a way that triggers a double free memory error.