CVE-2024-56783

Published: Jan 8, 2025

Modified: May 23, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_socket: remove WARN_ON_ONCE on maximum cgroup level cgroup maximum depth is INT_MAX by default, there is a cgroup toggle to restrict this maximum depth to a more reasonable value not to harm performance. Remove unnecessary WARN_ON_ONCE which is reachable from userspace.

Vendor	Product	Versions
Linux	Linux	affected `ace0db36b4a1db07a48517c4f04488d1cd05e5f5 - < 7064a6daa4a700a298fe3aee11dea296bfe59fc4` affected `f07e28e4c623168f9fa5c00f518bd341d4014aa6 - < 2f9bec0a749eb646b384fde0c7b7c24687b2ffae` affected `7f3287db654395f9c5ddd246325ff7889f550286 - < e227c042580ab065edc610c9ddc9bea691e6fc4d` affected `7f3287db654395f9c5ddd246325ff7889f550286 - < b7529880cb961d515642ce63f9d7570869bbbdc3` affected `ecc5368315af8473fe052cb928e53756dbfe4403` +3 more versions
Linux	Linux	affected `6.11` unaffected `0 - < 6.11` unaffected `6.1.120 - <= 6.1.` unaffected `6.6.66 - <= 6.6.` unaffected `6.12.5 - <= 6.12.*` +1 more versions

References

https://git.kernel.org/stable/c/7064a6daa4a700a298fe3aee11dea296bfe59fc4

https://git.kernel.org/stable/c/2f9bec0a749eb646b384fde0c7b7c24687b2ffae

https://git.kernel.org/stable/c/e227c042580ab065edc610c9ddc9bea691e6fc4d

https://git.kernel.org/stable/c/b7529880cb961d515642ce63f9d7570869bbbdc3

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-56783

Description

Affected Products

References