CVE-2024-27402

The receive queues are protected by their respective spin-lock, not the socket lock. This could lead to skb_peek() unexpectedly returning NULL or a pointer to an already dequeued socket buffer.

Database specific

{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/blob/cc431b3424123d84bcd7afd4de150b33f117a8ef/cves/2024/27xxx/CVE-2024-27402.json"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

9641458d3ec42def729fde64669abf07f3220cd5

Fixed

7d3914a477eed92b48c493a8631cc4554ab4fd4f

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

9641458d3ec42def729fde64669abf07f3220cd5

Fixed

9d5523e065b568e79dfaa2ea1085a5bcf74baf78

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

9641458d3ec42def729fde64669abf07f3220cd5

Fixed

0a9f558c72c47472c38c05fcb72c70abb9104277

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

9641458d3ec42def729fde64669abf07f3220cd5

Fixed

8ef4fcc7014b9f93619851d6b78d6cc2789a4c88

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

9641458d3ec42def729fde64669abf07f3220cd5

Fixed

7d2a894d7f487dcb894df023e9d3014cf5b93fe5

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

2.6.28

Fixed

5.15.181

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

6.1.80

Type: ECOSYSTEM
Events: Introduced

6.2.0

Fixed

6.6.19

Type: ECOSYSTEM
Events: Introduced

6.7.0

Fixed

6.7.7