CVE-2024-50127
Published: Nov 5, 2024
Modified: May 12, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: net: sched: fix use-after-free in taprio_change() In 'taprio_change()', 'admin' pointer may become dangling due to sched switch / removal caused by 'advance_sched()', and critical section protected by 'q->current_entry_lock' is too small to prevent from such a scenario (which causes use-after-free detected by KASAN). Fix this by prefer 'rcu_replace_pointer()' over 'rcu_assign_pointer()' to update 'admin' immediately before an attempt to schedule freeing.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected a3d43c0d56f1b94e74963a2fbadfb70126d92213 - < 2f868ce6013548a713c431c679ef73747a66fcf3affected a3d43c0d56f1b94e74963a2fbadfb70126d92213 - < 8a283a19026aaae8a773fd8061263cfa315b127faffected a3d43c0d56f1b94e74963a2fbadfb70126d92213 - < 999612996df28d81f163dad530d7f8026e03aec6affected a3d43c0d56f1b94e74963a2fbadfb70126d92213 - < fe371f084073e8672a2d7d46b335c3c060d1e301affected a3d43c0d56f1b94e74963a2fbadfb70126d92213 - < 0d4c0d2844e4eac3aed647f948fd7e60eea56a61+2 more versions |
Linux | Linux | affected 5.2unaffected 0 - < 5.2unaffected 5.4.285 - <= 5.4.*unaffected 5.10.229 - <= 5.10.*unaffected 5.15.170 - <= 5.15.*+4 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now