Lucene search

K
nvd416baaa9-dc9f-4396-8d5f-8c081fb06d67NVD:CVE-2024-26679
HistoryApr 02, 2024 - 7:15 a.m.

CVE-2024-26679

2024-04-0207:15:44
416baaa9-dc9f-4396-8d5f-8c081fb06d67
web.nvd.nist.gov
7
inet_recv_error
socket lock
ipv6
ipv6_addrform
kcsan warning
cve-2024-26679
linux kernel

AI Score

7.2

Confidence

High

EPSS

0

Percentile

13.0%

In the Linux kernel, the following vulnerability has been resolved:

inet: read sk->sk_family once in inet_recv_error()

inet_recv_error() is called without holding the socket lock.

IPv6 socket could mutate to IPv4 with IPV6_ADDRFORM
socket option and trigger a KCSAN warning.