CVE-2024-50264

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2024-50264

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-50264.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2024-50264

Aliases

A-378870958
ASB-A-378870958

Downstream

AZL-53507

AZL-53672

BELL-CVE-2024-50264

DEBIAN-CVE-2024-50264

DLA-4008-1

DLA-4075-1

DSA-5818-1

OESA-2024-2522

OESA-2025-1033

OESA-2025-1034

OESA-2025-1035

OESA-2025-1037

RHSA-2024:10943

RHSA-2024:10944

RHSA-2025:2627

RHSA-2025:3510

RLSA-2024:10943

RLSA-2024:10944

SUSE-SU-2024:4313-1

SUSE-SU-2024:4314-1

SUSE-SU-2024:4315-1

SUSE-SU-2024:4316-1

SUSE-SU-2024:4317-1

SUSE-SU-2024:4318-1

SUSE-SU-2024:4345-1

SUSE-SU-2024:4346-1

SUSE-SU-2024:4364-1

SUSE-SU-2024:4367-1

SUSE-SU-2024:4376-1

SUSE-SU-2024:4387-1

SUSE-SU-2024:4388-1

SUSE-SU-2025:0035-1

SUSE-SU-2025:0083-1

SUSE-SU-2025:0084-1

SUSE-SU-2025:0085-1

SUSE-SU-2025:0089-1

SUSE-SU-2025:0090-1

SUSE-SU-2025:0091-1

SUSE-SU-2025:0094-1

SUSE-SU-2025:0097-1

SUSE-SU-2025:0098-1

SUSE-SU-2025:0100-1

SUSE-SU-2025:0101-1

SUSE-SU-2025:0103-1

SUSE-SU-2025:0105-1

SUSE-SU-2025:0106-1

SUSE-SU-2025:0107-1

SUSE-SU-2025:0108-1

SUSE-SU-2025:0109-1

SUSE-SU-2025:0110-1

SUSE-SU-2025:0111-1

SUSE-SU-2025:0112-1

SUSE-SU-2025:0114-1

SUSE-SU-2025:0115-1

SUSE-SU-2025:0123-1

SUSE-SU-2025:0124-1

SUSE-SU-2025:0131-1

SUSE-SU-2025:0132-1

SUSE-SU-2025:0136-1

SUSE-SU-2025:0137-1

SUSE-SU-2025:0138-1

SUSE-SU-2025:0146-1

SUSE-SU-2025:0150-1

SUSE-SU-2025:0158-1

SUSE-SU-2025:0164-1

SUSE-SU-2025:0168-1

SUSE-SU-2025:0172-1

SUSE-SU-2025:0173-1

SUSE-SU-2025:0177-1

SUSE-SU-2025:0179-1

SUSE-SU-2025:0180-1

SUSE-SU-2025:0181-1

SUSE-SU-2025:0184-1

SUSE-SU-2025:0185-1

SUSE-SU-2025:0187-1

SUSE-SU-2025:0188-1

SUSE-SU-2025:0238-1

SUSE-SU-2025:0239-1

SUSE-SU-2025:0240-1

SUSE-SU-2025:0243-1

SUSE-SU-2025:0244-1

SUSE-SU-2025:0245-1

SUSE-SU-2025:0246-1

SUSE-SU-2025:0248-1

SUSE-SU-2025:0249-1

SUSE-SU-2025:0251-1

SUSE-SU-2025:0252-1

SUSE-SU-2025:0253-1

SUSE-SU-2025:0254-1

SUSE-SU-2025:0255-1

SUSE-SU-2025:0260-1

SUSE-SU-2025:0261-1

SUSE-SU-2025:0262-1

SUSE-SU-2025:0264-1

SUSE-SU-2025:0265-1

SUSE-SU-2025:0266-1

SUSE-SU-2025:0269-1

SUSE-SU-2025:20163-1

SUSE-SU-2025:20164-1

SUSE-SU-2025:20246-1

SUSE-SU-2025:20247-1

SUSE-SU-2025:4123-1

Related

Published

2024-11-19T01:29:59.511Z

Modified

2026-03-20T12:39:39.546511Z

Severity

7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans

Details

In the Linux kernel, the following vulnerability has been resolved:

vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans

During loopback communication, a dangling pointer can be created in vsk->trans, potentially leading to a Use-After-Free condition. This issue is resolved by initializing vsk->trans to NULL.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/50xxx/CVE-2024-50264.json",
    "cna_assigner": "Linux"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

06a8fc78367d070720af960dcecec917d3ae5f3b

Fixed

5f092a4271f6dccf88fe0d132475a17b69ef71df

Fixed

fd8ae346692a56b4437d626c5460c7104980f389

Fixed

eb1bdcb7dfc30b24495ee4c5533af0ed135cb5f1

Fixed

2a6a4e69f255b7aed17f93995691ab4f0d3c2203

Fixed

44d29897eafd0e1196453d3003a4d5e0b968eeab

Fixed

b110196fec44fe966952004bd426967c2a8fd358

Fixed

5f970935d09934222fdef3d0e20c648ea7a963c1

Fixed

6ca575374dd9a507cdd16dfa0e78c2e9e20bd05f

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-50264.json"