CVE-2024-26592
- Source
- https://cve.org/CVERecord?id=CVE-2024-26592
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-26592.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-26592
- Downstream
- Related
- Published
- 2024-02-22T16:21:44.626Z
- Modified
- 2026-05-28T03:55:16.789815463Z
- Severity
-
- 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- ksmbd: fix UAF issue in ksmbd_tcp_new_connection()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
ksmbd: fix UAF issue in ksmbdtcpnew_connection()
The race is between the handling of a new TCP connection and its disconnection. It leads to UAF on
struct tcp_transportin ksmbdtcpnew_connection() function. - Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/26xxx/CVE-2024-26592.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/24290ba94cd0136e417283b0dbf8fcdabcf62111
- https://git.kernel.org/stable/c/380965e48e9c32ee4263c023e1d830ea7e462ed1
- https://git.kernel.org/stable/c/38d20c62903d669693a1869aa68c4dd5674e2544
- https://git.kernel.org/stable/c/69d54650b751532d1e1613a4fb433e591aeef126
- https://git.kernel.org/stable/c/999daf367b924fdf14e9d83e034ee0f86bc17ec6
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/26xxx/CVE-2024-26592.json
- https://nvd.nist.gov/vuln/detail/CVE-2024-26592
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduceda848c4f15ab6d5d405dbee7de5da71839b2bf35eFixed999daf367b924fdf14e9d83e034ee0f86bc17ec6Fixed380965e48e9c32ee4263c023e1d830ea7e462ed1Fixed24290ba94cd0136e417283b0dbf8fcdabcf62111Fixed69d54650b751532d1e1613a4fb433e591aeef126Fixed38d20c62903d669693a1869aa68c4dd5674e2544