CVE-2024-26585

MEDIUM

Linux Kernel 4.20.0-6.6.17, 5.16.0-6.1.83, 6.2.0-6.6.17, 6.7.0-6.7.5 - Race Condition in TLS Socket Close Handling

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: tls: fix race between tx work scheduling and socket close Similarly to previous commit, the submitting thread (recvmsg/sendmsg) may exit as soon as the async crypto handler calls complete(). Reorder scheduling the work before calling complete(). This seems more logical in the first place, as it's the inverse order of what the submitting thread will do.

References (6)

Core 6

Core References

Mailing List, Third Party Advisory

https://lists.fedoraproject.org/archives/list/[email protected]/message/EZOU3745CWCDZ7EMKMXB2OEEIB5Q3IWM/

Patch

https://git.kernel.org/stable/c/dd32621f19243f89ce830919496a5dcc2158aa33

Patch

https://git.kernel.org/stable/c/196f198ca6fce04ba6ce262f5a0e4d567d7d219d

Patch

https://git.kernel.org/stable/c/6db22d6c7a6dc914b12c0469b94eb639b6a8a146

Patch

https://git.kernel.org/stable/c/e327ed60bff4a991cd7a709c47c4f0c5b4a4fd57

Patch

https://git.kernel.org/stable/c/e01e3934a1b2d122919f73bc6ddbe1cdafc4bbdb

Scores

CVSS v3 4.7

EPSS 0.0019

EPSS Percentile 8.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-362

Status published

Products (17)

linux/Kernel 4.20.0 - 5.15.165linux

linux/Kernel 5.16.0 - 6.1.84linux

linux/Kernel 6.2.0 - 6.6.18linux

linux/Kernel 6.7.0 - 6.7.6linux

Linux/Linux < 4.20

Linux/Linux 4.20

Linux/Linux 5.15.165 - 5.15.*

Linux/Linux 6.1.84 - 6.1.*

Linux/Linux 6.6.18 - 6.6.*

Linux/Linux 6.7.6 - 6.7.*

... and 7 more

Published Feb 21, 2024

Tracked Since Feb 18, 2026