CVE-2024-26679

inet: read sk->sk_family once in inet_recv_error()

Severity Score

5.5

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved: inet: read sk->sk_family once in inet_recv_error() inet_recv_error() is called without holding the socket lock. IPv6 socket could mutate to IPv4 with IPV6_ADDRFORM
socket option and trigger a KCSAN warning.

En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: inet: lee sk->sk_family una vez en inet_recv_error() se llama a inet_recv_error() sin mantener el bloqueo del socket. El socket IPv6 podría mutar a IPv4 con la opción de socket IPV6_ADDRFORM y generar una advertencia de KCSAN.

It was discovered that the Open vSwitch implementation in the Linux kernel could overflow its stack during recursive action operations under certain conditions. A local attacker could use this to cause a denial of service. Sander Wiebing, Alvise de Faveri Tron, Herbert Bos, and Cristiano Giuffrida discovered that the Linux kernel mitigations for the initial Branch History Injection vulnerability were insufficient for Intel processors. A local attacker could potentially use this to expose sensitive information.

*Credits: N/A

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Attack Vector

Local

Attack Complexity

Low

Authentication

Single

Confidentiality

None

Integrity

None

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-02-19 CVE Reserved
2024-04-02 CVE Published
2024-12-19 CVE Updated
2025-03-30 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-413: Improper Resource Locking

CAPEC

References (14)

URL	Tag	Source
https://git.kernel.org/stable/c/f4713a3dfad045d46afcb9c2a7d0bba288920ed4	Vuln. Introduced
https://git.kernel.org/stable/c/433337f9c00cac447d020922f59237273f5d92be	Vuln. Introduced
https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/caa064c3c2394d03e289ebd6b0be5102eb8a5b40	2024-02-23
https://git.kernel.org/stable/c/5993f121fbc01dc2d734f0ff2628009b258fb1dd	2024-02-23
https://git.kernel.org/stable/c/88081ba415224cf413101def4343d660f56d082b	2024-02-23
https://git.kernel.org/stable/c/3266e638ba5cc1165f5e6989eb8c0720f1cc4b41	2024-02-23
https://git.kernel.org/stable/c/54538752216bf89ee88d47ad07802063a498c299	2024-02-16
https://git.kernel.org/stable/c/4a5e31bdd3c1702b520506d9cf8c41085f75c7f2	2024-02-16
https://git.kernel.org/stable/c/307fa8a75ab7423fa5c73573ec3d192de5027830	2024-02-16
https://git.kernel.org/stable/c/eef00a82c568944f113f2de738156ac591bbd5cd	2024-02-04

URL	Date	SRC
https://access.redhat.com/security/cve/CVE-2024-26679	2024-11-12
https://bugzilla.redhat.com/show_bug.cgi?id=2272839	2024-11-12

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.18 < 4.19.307 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.18 < 4.19.307"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.18 < 5.4.269 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.18 < 5.4.269"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.18 < 5.10.210 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.18 < 5.10.210"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.18 < 5.15.149 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.18 < 5.15.149"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.18 < 6.1.78 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.18 < 6.1.78"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.18 < 6.6.17 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.18 < 6.6.17"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.18 < 6.7.5 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.18 < 6.7.5"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.18 < 6.8 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.18 < 6.8"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				3.17.7 Search vendor "Linux" for product "Linux Kernel" and version "3.17.7"		en		Affected