CVE-2024-41007: 
Linux Kernel vulnerability analysis and mitigation

CVE-2024-41007 affects the Linux kernel's TCP implementation. The vulnerability was discovered in July 2024 and involves excessive packet retransmission when using TCPUSERTIMEOUT. Specifically, when a TCP socket uses TCPUSERTIMEOUT and the peer's window retracts to zero, tcpretransmittimer() can retransmit a packet every two jiffies (2 ms for HZ=1000) for about 4 minutes after TCPUSERTIMEOUT has expired (Kernel Patch).

The vulnerability stems from the tcprtxprobe0timedout() function not properly taking icsk->icskusertimeout into account. Before the fix, the socket would not timeout after icsk->icskusertimeout but would use standard exponential backoff for retransmits. The issue was exacerbated by a previous commit (e89688e3e978) which increased the duration from 2 minutes to 4 minutes. The vulnerability has been assigned a CVSS v3.1 base score of 3.3 (Low) with vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L (NVD).

The vulnerability can lead to excessive network resource consumption through unnecessary packet retransmissions, potentially affecting system performance and network efficiency. The impact is limited to availability (no confidentiality or integrity impacts) and requires local access to exploit (NVD).

The vulnerability has been patched in the Linux kernel. The fix ensures tcprtxprobe0timedout() properly considers icsk->icskusertimeout when determining packet retransmission behavior. The patch has been backported to multiple kernel versions including 4.19 through 6.9.10 (Kernel Patch).