CVE-2024-26606
Published: Feb 26, 2024
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: binder: signal epoll threads of self-work In (e)poll mode, threads often depend on I/O events to determine when data is ready for consumption. Within binder, a thread may initiate a command via BINDER_WRITE_READ without a read buffer and then make use of epoll_wait() or similar to consume any responses afterwards. It is then crucial that epoll threads are signaled via wakeup when they queue their own work. Otherwise, they risk waiting indefinitely for an event leaving their work unhandled. What is worse, subsequent commands won't trigger a wakeup either as the thread has pending work.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 457b9a6f09f011ebcb9b52cc203a6331a6fc2de7 - < dd64bb8329ce0ea27bc557e4160c2688835402acaffected 457b9a6f09f011ebcb9b52cc203a6331a6fc2de7 - < 42beab162dcee1e691ee4934292d51581c29df61affected 457b9a6f09f011ebcb9b52cc203a6331a6fc2de7 - < a423042052ec2bdbf1e552e621e6a768922363ccaffected 457b9a6f09f011ebcb9b52cc203a6331a6fc2de7 - < 82722b453dc2f967b172603e389ee7dc1b3137ccaffected 457b9a6f09f011ebcb9b52cc203a6331a6fc2de7 - < 90e09c016d72b91e76de25f71c7b93d94cc3c769+3 more versions |
Linux | Linux | affected 2.6.29unaffected 0 - < 2.6.29unaffected 4.19.307 - <= 4.19.*unaffected 5.4.269 - <= 5.4.*unaffected 5.10.210 - <= 5.10.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now