CVE-2024-56688

Published: Dec 28, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport Since transport->sock has been set to NULL during reset transport, XPRT_SOCK_UPD_TIMEOUT also needs to be cleared. Otherwise, the xs_tcp_set_socket_timeouts() may be triggered in xs_tcp_send_request() to dereference the transport->sock that has been set to NULL.

Vendor	Product	Versions
Linux	Linux	affected `7196dbb02ea05835b9ee56910ee82cb55422c7f1 - < cc91d59d34ff6a6fee1c0b48612081a451e05e9a` affected `7196dbb02ea05835b9ee56910ee82cb55422c7f1 - < 86a1f9fa24804cd7f9d7dd3f24af84fc7f8ec02e` affected `7196dbb02ea05835b9ee56910ee82cb55422c7f1 - < fe6cbf0b2ac3cf4e21824a44eaa336564ed5e960` affected `7196dbb02ea05835b9ee56910ee82cb55422c7f1 - < 87a95ee34a48dfad198a2002e4966e1d63d53f2b` affected `7196dbb02ea05835b9ee56910ee82cb55422c7f1 - < 3811172e8c98ceebd12fe526ca6cb37a1263c964` +3 more versions
Linux	Linux	affected `4.11` unaffected `0 - < 4.11` unaffected `5.4.287 - <= 5.4.` unaffected `5.10.231 - <= 5.10.` unaffected `5.15.174 - <= 5.15.*` +5 more versions