Back to search
CVE-2024-56606
Published: Dec 27, 2024
Modified: May 11, 2026
PUBLISHED
Description
In the Linux kernel, the following vulnerability has been resolved: af_packet: avoid erroring out after sock_init_data() in packet_create() After sock_init_data() the allocated sk object is attached to the provided sock object. On error, packet_create() frees the sk object leaving the dangling pointer in the sock object on return. Some other code may try to use this pointer and cause use-after-free.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected b013840810c221f2b0cf641d01531526052dc1fb - < 71b22837a5e55ac27d6a14b9cdf2326587405c4faffected b013840810c221f2b0cf641d01531526052dc1fb - < 1dc1e1db927056cb323296e2294a855cd003dfe7affected b013840810c221f2b0cf641d01531526052dc1fb - < 132e615bb1d7cdec2d3cfbdec2efa630e923fd21affected b013840810c221f2b0cf641d01531526052dc1fb - < a6cf750b737374454a4e03a5ed449a3eb0c96414affected b013840810c221f2b0cf641d01531526052dc1fb - < 157f08db94123e2ba56877dd0ac88908b13a5dd0+2 more versions |
Linux | Linux | affected 3.14unaffected 0 - < 3.14unaffected 5.4.287 - <= 5.4.*unaffected 5.10.231 - <= 5.10.*unaffected 5.15.174 - <= 5.15.*+4 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now