Back to search
CVE-2024-26622
Published: Mar 4, 2024
Modified: May 11, 2026
PUBLISHED
Description
In the Linux kernel, the following vulnerability has been resolved: tomoyo: fix UAF write bug in tomoyo_write_control() Since tomoyo_write_control() updates head->write_buf when write() of long lines is requested, we need to fetch head->write_buf after head->io_sem is held. Otherwise, concurrent write() requests can cause use-after-free-write and double-free problems.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected bd03a3e4c9a9df0c6b007045fa7fc8889111a478 - < a23ac1788e2c828c097119e9a3178f0b7e503feeaffected bd03a3e4c9a9df0c6b007045fa7fc8889111a478 - < 7d930a4da17958f869ef679ee0e4a8729337affcaffected bd03a3e4c9a9df0c6b007045fa7fc8889111a478 - < 3bfe04c1273d30b866f4c7c238331ed3b08e5824affected bd03a3e4c9a9df0c6b007045fa7fc8889111a478 - < 2caa605079488da9601099fbda460cfc1702839faffected bd03a3e4c9a9df0c6b007045fa7fc8889111a478 - < 6edefe1b6c29a9932f558a898968a9fcbeec5711+1 more versions |
Linux | Linux | affected 3.1unaffected 0 - < 3.1unaffected 5.10.212 - <= 5.10.*unaffected 5.15.151 - <= 5.15.*unaffected 6.1.81 - <= 6.1.*+3 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now