Back to search
CVE-2024-56600
Published: Dec 27, 2024
Modified: May 11, 2026
PUBLISHED
Description
In the Linux kernel, the following vulnerability has been resolved: net: inet6: do not leave a dangling sk pointer in inet6_create() sock_init_data() attaches the allocated sk pointer to the provided sock object. If inet6_create() fails later, the sk object is released, but the sock object retains the dangling sk pointer, which may cause use-after-free later. Clear the sock sk pointer on error.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < f2709d1271cfdf55c670ab5c5982139ab627ddc7affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 35360255ca30776dee34d9fa764cffa24d0a5f65affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 276a473c956fb55a6f3affa9ff232e10fffa7b43affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 79e16a0d339532ea832d85798eb036fc4f9e0ceaaffected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 706b07b7b37f886423846cb38919132090bc40da+2 more versions |
Linux | Linux | affected 2.6.12unaffected 0 - < 2.6.12unaffected 5.4.287 - <= 5.4.*unaffected 5.10.231 - <= 5.10.*unaffected 5.15.174 - <= 5.15.*+4 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now