CVE-2024-53091
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-53091
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-53091.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-53091
- Downstream
- Related
- Published
- 2024-11-21T18:17:08Z
- Modified
- 2025-10-17T17:04:09.103854Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- bpf: Add sk_is_inet and IS_ICSK check in tls_sw_has_ctx_tx/rx
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
bpf: Add skisinet and ISICSK check in tlsswhasctx_tx/rx
As the introduction of the support for vsock and unix sockets in sockmap, tlsswhasctxtx/rx cannot presume the socket passed in must be ISICSK. vsock and afunix sockets have vsocksock and unixsock instead of inetconnectionsock. For these sockets, tlsgetctx may return an invalid pointer and cause page fault in function tlsswctx_rx.
BUG: unable to handle page fault for address: 0000000000040030 Workqueue: vsock-loopback vsockloopbackwork RIP: 0010:skpsockstrpdataready+0x23/0x60 Call Trace: ? _die+0x81/0xc3 ? nocontext+0x194/0x350 ? dopagefault+0x30/0x110 ? asyncpagefault+0x3e/0x50 ? skpsockstrpdataready+0x23/0x60 virtiotransportrecvpkt+0x750/0x800 ? updateloadavg+0x7e/0x620 vsockloopbackwork+0xd0/0x100 processonework+0x1a7/0x360 workerthread+0x30/0x390 ? createworker+0x1a0/0x1a0 kthread+0x112/0x130 ? _kthreadcancelwork+0x40/0x40 retfromfork+0x1f/0x40
v2: - Add IS_ICSK check v3: - Update the commits in Fixes
- References
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced94531cfcbe79c3598acf96806627b2137ca32eb9Fixeda078a480ff3f43d74d8a024ae10c3c7daf6db149
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced94531cfcbe79c3598acf96806627b2137ca32eb9Fixed6781cfa93a6a1b7f5be6819a5a2dd8f30f47ca26
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced94531cfcbe79c3598acf96806627b2137ca32eb9Fixed44d0469f79bd3d0b3433732877358df7dc6b17b1
Affected versions
v5.*
v5.14
v5.14-rc6
v5.14-rc7
v5.15
v5.15-rc1
v5.15-rc2
v5.15-rc3
v5.15-rc4
v5.15-rc5
v5.15-rc6
v5.15-rc7
v5.16
v5.16-rc1
v5.16-rc2
v5.16-rc3
v5.16-rc4
v5.16-rc5
v5.16-rc6
v5.16-rc7
v5.16-rc8
v5.17
v5.17-rc1
v5.17-rc2
v5.17-rc3
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.18
v5.18-rc1
v5.18-rc2
v5.18-rc3
v5.18-rc4
v5.18-rc5
v5.18-rc6
v5.18-rc7
v5.19
v5.19-rc1
v5.19-rc2
v5.19-rc3
v5.19-rc4
v5.19-rc5
v5.19-rc6
v5.19-rc7
v5.19-rc8
v6.*
v6.0
v6.0-rc1
v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.1
v6.1-rc1
v6.1-rc2
v6.1-rc3
v6.1-rc4
v6.1-rc5
v6.1-rc6
v6.1-rc7
v6.1-rc8
v6.10
v6.10-rc1
v6.10-rc2
v6.10-rc3
v6.10-rc4
v6.10-rc5
v6.10-rc6
v6.10-rc7
v6.11
v6.11-rc1
v6.11-rc2
v6.11-rc3
v6.11-rc4
v6.11-rc5
v6.11-rc6
v6.11-rc7
v6.11.1
v6.11.2
v6.11.3
v6.11.4
v6.11.5
v6.11.6
v6.11.7
v6.11.8
v6.12-rc1
v6.12-rc2
v6.12-rc3
v6.12-rc4
v6.12-rc5
v6.12-rc6
v6.2
v6.2-rc1
v6.2-rc2
v6.2-rc3
v6.2-rc4
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.3
v6.3-rc1
v6.3-rc2
v6.3-rc3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.5
v6.5-rc1
v6.5-rc2
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.14
v6.6.15
v6.6.16
v6.6.17
v6.6.18
v6.6.19
v6.6.2
v6.6.20
v6.6.21
v6.6.22
v6.6.23
v6.6.24
v6.6.25
v6.6.26
v6.6.27
v6.6.28
v6.6.29
v6.6.3
v6.6.30
v6.6.31
v6.6.32
v6.6.33
v6.6.34
v6.6.35
v6.6.36
v6.6.37
v6.6.38
v6.6.39
v6.6.4
v6.6.40
v6.6.41
v6.6.42
v6.6.43
v6.6.44
v6.6.45
v6.6.46
v6.6.47
v6.6.48
v6.6.49
v6.6.5
v6.6.50
v6.6.51
v6.6.52
v6.6.53
v6.6.54
v6.6.55
v6.6.56
v6.6.57
v6.6.58
v6.6.59
v6.6.6
v6.6.60
v6.6.61
v6.6.7
v6.6.8
v6.6.9
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5
v6.8-rc6
v6.8-rc7
v6.9
v6.9-rc1
v6.9-rc2
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7
Database specific
vanir_signatures
[
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@6781cfa93a6a1b7f5be6819a5a2dd8f30f47ca26",
"id": "CVE-2024-53091-19b947ec",
"target": {
"file": "include/net/tls.h",
"function": "tls_sw_has_ctx_rx"
},
"digest": {
"function_hash": "180549193980448791726741384275371882465",
"length": 149.0
},
"signature_version": "v1",
"signature_type": "Function",
"deprecated": false
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@44d0469f79bd3d0b3433732877358df7dc6b17b1",
"id": "CVE-2024-53091-1e177584",
"target": {
"file": "include/net/tls.h",
"function": "tls_sw_has_ctx_rx"
},
"digest": {
"function_hash": "180549193980448791726741384275371882465",
"length": 149.0
},
"signature_version": "v1",
"signature_type": "Function",
"deprecated": false
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@44d0469f79bd3d0b3433732877358df7dc6b17b1",
"id": "CVE-2024-53091-637a597f",
"target": {
"file": "include/net/tls.h",
"function": "tls_sw_has_ctx_tx"
},
"digest": {
"function_hash": "180549193980448791726741384275371882465",
"length": 149.0
},
"signature_version": "v1",
"signature_type": "Function",
"deprecated": false
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@6781cfa93a6a1b7f5be6819a5a2dd8f30f47ca26",
"id": "CVE-2024-53091-6ed136cc",
"target": {
"file": "include/net/tls.h",
"function": "tls_sw_has_ctx_tx"
},
"digest": {
"function_hash": "180549193980448791726741384275371882465",
"length": 149.0
},
"signature_version": "v1",
"signature_type": "Function",
"deprecated": false
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@44d0469f79bd3d0b3433732877358df7dc6b17b1",
"id": "CVE-2024-53091-7303c37d",
"target": {
"file": "include/net/tls.h"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"74337063926412460248041595252709290720",
"325416365974770973787719542959452552044",
"34266581124337212315557581905566853367",
"174962891777147667445283553007070851822",
"308794872512525697398766455938413976875",
"33460380445802568241320326724531229339",
"34266581124337212315557581905566853367",
"117328569764842754141930749620326638686"
]
},
"signature_version": "v1",
"signature_type": "Line",
"deprecated": false
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a078a480ff3f43d74d8a024ae10c3c7daf6db149",
"id": "CVE-2024-53091-93a61305",
"target": {
"file": "include/net/tls.h",
"function": "tls_sw_has_ctx_tx"
},
"digest": {
"function_hash": "180549193980448791726741384275371882465",
"length": 149.0
},
"signature_version": "v1",
"signature_type": "Function",
"deprecated": false
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@6781cfa93a6a1b7f5be6819a5a2dd8f30f47ca26",
"id": "CVE-2024-53091-a4171206",
"target": {
"file": "include/net/tls.h"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"74337063926412460248041595252709290720",
"325416365974770973787719542959452552044",
"34266581124337212315557581905566853367",
"174962891777147667445283553007070851822",
"308794872512525697398766455938413976875",
"33460380445802568241320326724531229339",
"34266581124337212315557581905566853367",
"117328569764842754141930749620326638686"
]
},
"signature_version": "v1",
"signature_type": "Line",
"deprecated": false
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a078a480ff3f43d74d8a024ae10c3c7daf6db149",
"id": "CVE-2024-53091-ae02d6f9",
"target": {
"file": "include/net/tls.h"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"74337063926412460248041595252709290720",
"325416365974770973787719542959452552044",
"34266581124337212315557581905566853367",
"174962891777147667445283553007070851822",
"308794872512525697398766455938413976875",
"33460380445802568241320326724531229339",
"34266581124337212315557581905566853367",
"117328569764842754141930749620326638686"
]
},
"signature_version": "v1",
"signature_type": "Line",
"deprecated": false
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a078a480ff3f43d74d8a024ae10c3c7daf6db149",
"id": "CVE-2024-53091-f9b0c27d",
"target": {
"file": "include/net/tls.h",
"function": "tls_sw_has_ctx_rx"
},
"digest": {
"function_hash": "180549193980448791726741384275371882465",
"length": 149.0
},
"signature_version": "v1",
"signature_type": "Function",
"deprecated": false
}
]