CVE-2024-26622

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2024-26622

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-26622.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2024-26622

Downstream

BELL-CVE-2024-26622

DEBIAN-CVE-2024-26622

DLA-3842-1

DSA-5681-1

OESA-2024-1353

OESA-2024-1355

OESA-2024-1356

OESA-2024-1357

OESA-2024-1392

OESA-2024-1393

SUSE-SU-2024:0855-1

SUSE-SU-2024:0856-1

SUSE-SU-2024:0857-1

SUSE-SU-2024:0858-1

SUSE-SU-2024:0900-1

SUSE-SU-2024:0900-2

SUSE-SU-2024:0910-1

SUSE-SU-2024:0925-1

SUSE-SU-2024:0926-1

SUSE-SU-2024:0975-1

SUSE-SU-2024:0976-1

SUSE-SU-2024:0977-1

SUSE-SU-2024:1358-1

SUSE-SU-2024:1359-1

SUSE-SU-2024:1362-1

SUSE-SU-2024:1364-1

SUSE-SU-2024:1380-1

SUSE-SU-2024:1386-1

SUSE-SU-2024:1388-1

SUSE-SU-2024:1390-1

SUSE-SU-2024:1391-1

SUSE-SU-2024:1405-1

SUSE-SU-2024:1406-1

SUSE-SU-2024:1409-1

SUSE-SU-2024:1410-1

SUSE-SU-2024:1411-1

SUSE-SU-2024:1418-1

SUSE-SU-2024:1558-1

SUSE-SU-2024:1562-1

SUSE-SU-2024:1580-1

SUSE-SU-2024:1582-1

SUSE-SU-2024:1596-1

SUSE-SU-2024:1682-1

SUSE-SU-2024:1711-1

SUSE-SU-2024:1749-1

SUSE-SU-2024:2092-1

SUSE-SU-2024:2162-1

SUSE-SU-2024:2207-1

SUSE-SU-2024:2337-1

SUSE-SU-2024:2446-1

SUSE-SU-2024:2722-1

SUSE-SU-2024:2824-1

SUSE-SU-2024:2850-1

SUSE-SU-2024:3379-1

SUSE-SU-2024:3399-1

SUSE-SU-2024:3631-1

SUSE-SU-2024:3694-1

SUSE-SU-2024:3793-1

SUSE-SU-2024:3829-1

SUSE-SU-2024:3852-1

SUSE-SU-2024:4122-1

SUSE-SU-2024:4218-1

SUSE-SU-2024:4234-1

SUSE-SU-2025:0107-1

SUSE-SU-2025:0158-1

SUSE-SU-2025:0261-1

SUSE-SU-2025:0266-1

UBUNTU-CVE-2024-26622

USN-6774-1

USN-6775-1

USN-6775-2

USN-6776-1

USN-6777-1

USN-6777-2

USN-6777-3

USN-6777-4

USN-6778-1

Related

Published

2024-03-04T06:40:01.754Z

Modified

2026-05-28T03:54:14.658691740Z

Summary

tomoyo: fix UAF write bug in tomoyo_write_control()

Details

In the Linux kernel, the following vulnerability has been resolved:

tomoyo: fix UAF write bug in tomoyowritecontrol()

Since tomoyowritecontrol() updates head->writebuf when write() of long lines is requested, we need to fetch head->writebuf after head->io_sem is held. Otherwise, concurrent write() requests can cause use-after-free-write and double-free problems.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/26xxx/CVE-2024-26622.json",
    "cna_assigner": "Linux"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

bd03a3e4c9a9df0c6b007045fa7fc8889111a478

Fixed

a23ac1788e2c828c097119e9a3178f0b7e503fee

Fixed

7d930a4da17958f869ef679ee0e4a8729337affc

Fixed

3bfe04c1273d30b866f4c7c238331ed3b08e5824

Fixed

2caa605079488da9601099fbda460cfc1702839f

Fixed

6edefe1b6c29a9932f558a898968a9fcbeec5711

Fixed

2f03fc340cac9ea1dc63cbf8c93dd2eb0f227815

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-26622.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

3.1.0

Fixed

5.10.212

Type: ECOSYSTEM
Events: Introduced

5.11.0

Fixed

5.15.151

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

6.1.81

Type: ECOSYSTEM
Events: Introduced

6.2.0

Fixed

6.6.21

Type: ECOSYSTEM
Events: Introduced

6.7.0

Fixed

6.7.9

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-26622.json"