CVE-2024-26676

🗓️ 03 Apr 2024 00:35:04Reported by redhat.comType

In the Linux kernel, CVE-2024-26676 involves a memory leak due to lack of MSG_OOB handling, resolved by calling kfree_skb() for unix_(sk)->oob_skb in GC

Reporter	Title	Published	Views	Family All 113
Tenable Nessus	Amazon Linux 2023 : bpftool, kernel, kernel-devel (ALAS2023-2024-549)	6 Mar 202400:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel (ALASKERNEL-5.15-2024-039)	6 Mar 202400:00	–	nessus
Tenable Nessus	Debian dsa-5658 : affs-modules-6.1.0-11-4kc-malta-di - security update	13 Apr 202400:00	–	nessus
Tenable Nessus	Photon OS 5.0: Linux PHSA-2024-5.0-0305	24 Jul 202400:00	–	nessus
Tenable Nessus	Slackware Linux 15.0 kernel-generic Multiple Vulnerabilities (SSA:2024-157-01)	5 Jun 202400:00	–	nessus
Tenable Nessus	SUSE SLED15 / SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:2571-1)	23 Jul 202400:00	–	nessus
Tenable Nessus	SUSE SLES15 Security Update : kernel (SUSE-SU-2024:2896-1)	14 Aug 202400:00	–	nessus
Tenable Nessus	SUSE SLES15 Security Update : kernel (SUSE-SU-2024:2973-1)	21 Aug 202400:00	–	nessus
Tenable Nessus	Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel vulnerabilities (USN-6766-1)	7 May 202400:00	–	nessus
Tenable Nessus	Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel vulnerabilities (USN-6766-2)	15 May 202400:00	–	nessus

Source	Link
cve	www.cve.org/CVERecord
nvd	www.nvd.nist.gov/vuln/detail/CVE-2024-26676
lore	www.lore.kernel.org/linux-cve-announce/2024040252-CVE-2024-26676-222f@gregkh/T
bugzilla	www.bugzilla.redhat.com/show_bug.cgi

11 Apr 2024 10:25Current

6Medium risk

Vulners AI Score6

CVSS 3.15.5

EPSS0.00022

CWE-402