In the Linux kernel, the following vulnerability has been resolved:
vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans
During loopback communication, a dangling pointer can be created in vsk->trans, potentially leading to a Use-After-Free condition. This issue is resolved by initializing vsk->trans to NULL.
[ { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@5f970935d09934222fdef3d0e20c648ea7a963c1", "deprecated": false, "target": { "file": "net/vmw_vsock/virtio_transport_common.c" }, "digest": { "line_hashes": [ "93977310876986077576665763442512925816", "163800357948092888600624900561682532725", "136815264389493747422028697590892460623", "163716186038971930399625291126554016251" ], "threshold": 0.9 }, "id": "CVE-2024-50264-024cb7f9", "signature_type": "Line", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@6ca575374dd9a507cdd16dfa0e78c2e9e20bd05f", "deprecated": false, "target": { "file": "net/vmw_vsock/virtio_transport_common.c" }, "digest": { "line_hashes": [ "93977310876986077576665763442512925816", "163800357948092888600624900561682532725", "136815264389493747422028697590892460623", "120779868734454131026462409906749528624" ], "threshold": 0.9 }, "id": "CVE-2024-50264-0f7ca998", "signature_type": "Line", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@2a6a4e69f255b7aed17f93995691ab4f0d3c2203", "deprecated": false, "target": { "file": "net/vmw_vsock/virtio_transport_common.c", "function": "virtio_transport_destruct" }, "digest": { "function_hash": "29489074915205943468631857696750719064", "length": 86.0 }, "id": "CVE-2024-50264-15725109", "signature_type": "Function", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@5f092a4271f6dccf88fe0d132475a17b69ef71df", "deprecated": false, "target": { "file": "net/vmw_vsock/virtio_transport_common.c", "function": "virtio_transport_destruct" }, "digest": { "function_hash": "29489074915205943468631857696750719064", "length": 86.0 }, "id": "CVE-2024-50264-19530d72", "signature_type": "Function", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@eb1bdcb7dfc30b24495ee4c5533af0ed135cb5f1", "deprecated": false, "target": { "file": "net/vmw_vsock/virtio_transport_common.c" }, "digest": { "line_hashes": [ "93977310876986077576665763442512925816", "163800357948092888600624900561682532725", "136815264389493747422028697590892460623", "163716186038971930399625291126554016251" ], "threshold": 0.9 }, "id": "CVE-2024-50264-27962f48", "signature_type": "Line", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@6ca575374dd9a507cdd16dfa0e78c2e9e20bd05f", "deprecated": false, "target": { "file": "net/vmw_vsock/virtio_transport_common.c", "function": "virtio_transport_destruct" }, "digest": { "function_hash": "29489074915205943468631857696750719064", "length": 86.0 }, "id": "CVE-2024-50264-2af7ff9e", "signature_type": "Function", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@2a6a4e69f255b7aed17f93995691ab4f0d3c2203", "deprecated": false, "target": { "file": "net/vmw_vsock/virtio_transport_common.c" }, "digest": { "line_hashes": [ "93977310876986077576665763442512925816", "163800357948092888600624900561682532725", "136815264389493747422028697590892460623", "163716186038971930399625291126554016251" ], "threshold": 0.9 }, "id": "CVE-2024-50264-2e106e11", "signature_type": "Line", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@fd8ae346692a56b4437d626c5460c7104980f389", "deprecated": false, "target": { "file": "net/vmw_vsock/virtio_transport_common.c", "function": "virtio_transport_destruct" }, "digest": { "function_hash": "29489074915205943468631857696750719064", "length": 86.0 }, "id": "CVE-2024-50264-3c48d2fd", "signature_type": "Function", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@44d29897eafd0e1196453d3003a4d5e0b968eeab", "deprecated": false, "target": { "file": "net/vmw_vsock/virtio_transport_common.c" }, "digest": { "line_hashes": [ "93977310876986077576665763442512925816", "163800357948092888600624900561682532725", "136815264389493747422028697590892460623", "163716186038971930399625291126554016251" ], "threshold": 0.9 }, "id": "CVE-2024-50264-3defa2e7", "signature_type": "Line", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b110196fec44fe966952004bd426967c2a8fd358", "deprecated": false, "target": { "file": "net/vmw_vsock/virtio_transport_common.c" }, "digest": { "line_hashes": [ "93977310876986077576665763442512925816", "163800357948092888600624900561682532725", "136815264389493747422028697590892460623", "163716186038971930399625291126554016251" ], "threshold": 0.9 }, "id": "CVE-2024-50264-85c2c9ce", "signature_type": "Line", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@5f092a4271f6dccf88fe0d132475a17b69ef71df", "deprecated": false, "target": { "file": "net/vmw_vsock/virtio_transport_common.c" }, "digest": { "line_hashes": [ "93977310876986077576665763442512925816", "163800357948092888600624900561682532725", "136815264389493747422028697590892460623", "163716186038971930399625291126554016251" ], "threshold": 0.9 }, "id": "CVE-2024-50264-9491e6a5", "signature_type": "Line", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@fd8ae346692a56b4437d626c5460c7104980f389", "deprecated": false, "target": { "file": "net/vmw_vsock/virtio_transport_common.c" }, "digest": { "line_hashes": [ "93977310876986077576665763442512925816", "163800357948092888600624900561682532725", "136815264389493747422028697590892460623", "163716186038971930399625291126554016251" ], "threshold": 0.9 }, "id": "CVE-2024-50264-b663fd9d", "signature_type": "Line", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@44d29897eafd0e1196453d3003a4d5e0b968eeab", "deprecated": false, "target": { "file": "net/vmw_vsock/virtio_transport_common.c", "function": "virtio_transport_destruct" }, "digest": { "function_hash": "29489074915205943468631857696750719064", "length": 86.0 }, "id": "CVE-2024-50264-c2c40ecf", "signature_type": "Function", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@5f970935d09934222fdef3d0e20c648ea7a963c1", "deprecated": false, "target": { "file": "net/vmw_vsock/virtio_transport_common.c", "function": "virtio_transport_destruct" }, "digest": { "function_hash": "29489074915205943468631857696750719064", "length": 86.0 }, "id": "CVE-2024-50264-cd6da9cc", "signature_type": "Function", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b110196fec44fe966952004bd426967c2a8fd358", "deprecated": false, "target": { "file": "net/vmw_vsock/virtio_transport_common.c", "function": "virtio_transport_destruct" }, "digest": { "function_hash": "29489074915205943468631857696750719064", "length": 86.0 }, "id": "CVE-2024-50264-d96b022c", "signature_type": "Function", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@eb1bdcb7dfc30b24495ee4c5533af0ed135cb5f1", "deprecated": false, "target": { "file": "net/vmw_vsock/virtio_transport_common.c", "function": "virtio_transport_destruct" }, "digest": { "function_hash": "29489074915205943468631857696750719064", "length": 86.0 }, "id": "CVE-2024-50264-f4cc8f53", "signature_type": "Function", "signature_version": "v1" } ]