F5 published security advisories for multiple Linux kernel vulnerabilities, including CVE-2024-56615, a bug in BPF map handling where signed integer indexing in DEVMAP/XSKMAP can lead to out-of-bounds (OOB) writes during element deletion and map free operations. The fix described changes index/iterator types from int to u32 to prevent OOB access, with advisory details including an example kernel crash trace originating in dev_map_free().
F5 also documented CVE-2024-56626 and CVE-2024-56627 affecting the in-kernel SMB server ksmbd when vfs objects = streams_xattr is configured in ksmbd.conf: a client-supplied negative offset can trigger an OOB write in ksmbd_vfs_stream_write (CVE-2024-56626) and an OOB read in ksmbd_vfs_stream_read (CVE-2024-56627). In all three advisories, F5 states there is no impact to F5 products (either not affected or previously resolved) and provides no customer action beyond standard kernel patching practices in affected environments.

Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
1 event from the most recent confirmed update back to the earliest known activity.
F5 issued product advisories for Linux kernel vulnerabilities CVE-2024-56615, CVE-2024-56626, and CVE-2024-56627. The references provide no additional technical details or earlier event dates beyond the advisory publication date.
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
3 references tracked. Mallory keeps watching after this page renders.
my.f5.com
Open sourcemy.f5.com
Open sourcemy.f5.com
Open sourceMap indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.