CVE-2024-47685: 
Linux Kernel vulnerability analysis and mitigation

CVE-2024-47685 affects the Linux kernel's netfilter IPv6 functionality. The vulnerability was discovered when syzbot reported that nfrejectip6tcphdrput() was possibly sending garbage on the four reserved TCP bits (th->res1). This issue affects Linux kernel versions from 3.18 up to (excluding) 6.6.54 (NVD).

The vulnerability exists in the nfrejectip6tcphdrput() function within the netfilter IPv6 implementation. The issue occurs because the function uses skbput() instead of skbput_zero() when allocating TCP header memory, potentially leaving uninitialized memory in the reserved TCP header bits. The CVSS v3.1 base score is 9.1 CRITICAL with vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H (NVD, Kernel Patch).

The vulnerability could lead to information disclosure as uninitialized kernel memory might be exposed through the TCP header's reserved bits. This could potentially reveal sensitive kernel information to remote attackers (NVD).

The issue has been fixed by replacing skbput() with skbput_zero() to properly clear the whole TCP header. Users should update their Linux kernel to versions that include the fix. The patch has been backported to multiple stable kernel versions (Kernel Patch).