CVE-2024-58239
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-58239
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-58239.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-58239
- Downstream
- Related
- Published
- 2025-08-22T13:01:17.440Z
- Modified
- 2025-11-28T02:35:36.984929Z
- Summary
- tls: stop recv() if initial process_rx_list gave us non-DATA
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
tls: stop recv() if initial processrxlist gave us non-DATA
If we have a non-DATA record on the rxlist and another record of the same type still on the queue, we will end up merging them: - processrx_list copies the non-DATA record - we start the loop and process the first available record since it's of the same type - we break out of the loop since the record was not DATA
Just check the record type and jump to the end in case processrxlist did some work.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/58xxx/CVE-2024-58239.json" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/31e10d6cb0c9532ff070cf50da1657c3acee9276
- https://git.kernel.org/stable/c/3b952d8fdfcf6fd8ea0b8954bc9277642cf0977f
- https://git.kernel.org/stable/c/4338032aa90bd1d5b33a4274e8fa8347cda5ee09
- https://git.kernel.org/stable/c/6756168add1c6c3ef1c32c335bb843a5d1f99a75
- https://git.kernel.org/stable/c/a4ed943882a8fc057ea5a67643314245e048bbdd
- https://git.kernel.org/stable/c/f310143961e2d9a0479fca117ce869f8aaecc140
- https://git.kernel.org/stable/c/fdfbaec5923d9359698cbb286bc0deadbb717504
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/58xxx/CVE-2024-58239.json
- https://nvd.nist.gov/vuln/detail/CVE-2024-58239
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced692d7b5d1f9125a1cf0595e979e3b5fb7210547eFixedf310143961e2d9a0479fca117ce869f8aaecc140Fixed31e10d6cb0c9532ff070cf50da1657c3acee9276Fixed4338032aa90bd1d5b33a4274e8fa8347cda5ee09Fixed6756168add1c6c3ef1c32c335bb843a5d1f99a75Fixed3b952d8fdfcf6fd8ea0b8954bc9277642cf0977fFixeda4ed943882a8fc057ea5a67643314245e048bbddFixedfdfbaec5923d9359698cbb286bc0deadbb717504
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced5.1.0Fixed5.4.270
- Type
- ECOSYSTEM
- Events
-
Introduced5.5.0Fixed5.10.211
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.150
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.80
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.6.19
- Type
- ECOSYSTEM
- Events
-
Introduced6.7.0Fixed6.7.7