Back to search
CVE-2024-56601
Published: Dec 27, 2024
Modified: May 11, 2026
PUBLISHED
Description
In the Linux kernel, the following vulnerability has been resolved: net: inet: do not leave a dangling sk pointer in inet_create() sock_init_data() attaches the allocated sk object to the provided sock object. If inet_create() fails later, the sk object is freed, but the sock object retains the dangling pointer, which may create use-after-free later. Clear the sk pointer in the sock object on error.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < f8a3f255f7509a209292871715cda03779640c8daffected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 2bc34d8c8898ae9fddf4612501aabb22d76c2b2caffected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 3e8258070b0f2aba66b3ef18883de229674fb288affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < b4513cfd3a10c03c660d5d3d26c2e322efbfdd9baffected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 25447c6aaa7235f155292b0c58a067347e8ae891+2 more versions |
Linux | Linux | affected 2.6.12unaffected 0 - < 2.6.12unaffected 5.4.287 - <= 5.4.*unaffected 5.10.231 - <= 5.10.*unaffected 5.15.174 - <= 5.15.*+4 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now