In the Linux kernel, the following vulnerability has been resolved:
sunrpc: clear XPRTSOCKUPD_TIMEOUT when reset transport
Since transport->sock has been set to NULL during reset transport, XPRTSOCKUPDTIMEOUT also needs to be cleared. Otherwise, the xstcpsetsockettimeouts() may be triggered in xstcpsendrequest() to dereference the transport->sock that has been set to NULL.
[ { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@cc91d59d34ff6a6fee1c0b48612081a451e05e9a", "deprecated": false, "digest": { "function_hash": "258601859723832638950487532948260767331", "length": 448.0 }, "target": { "file": "net/sunrpc/xprtsock.c", "function": "xs_sock_reset_state_flags" }, "id": "CVE-2024-56688-05b97723", "signature_type": "Function", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@cc91d59d34ff6a6fee1c0b48612081a451e05e9a", "deprecated": false, "digest": { "line_hashes": [ "309746794442807039438172622117919344730", "174395668746787550906031580951785450150", "304495145853900742654923378621818337120", "318457133593918278984296471290416774554" ], "threshold": 0.9 }, "target": { "file": "net/sunrpc/xprtsock.c" }, "id": "CVE-2024-56688-168c87c9", "signature_type": "Line", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3811172e8c98ceebd12fe526ca6cb37a1263c964", "deprecated": false, "digest": { "line_hashes": [ "309746794442807039438172622117919344730", "174395668746787550906031580951785450150", "304495145853900742654923378621818337120", "318457133593918278984296471290416774554" ], "threshold": 0.9 }, "target": { "file": "net/sunrpc/xprtsock.c" }, "id": "CVE-2024-56688-1a4a8157", "signature_type": "Line", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@fe6cbf0b2ac3cf4e21824a44eaa336564ed5e960", "deprecated": false, "digest": { "function_hash": "258601859723832638950487532948260767331", "length": 448.0 }, "target": { "file": "net/sunrpc/xprtsock.c", "function": "xs_sock_reset_state_flags" }, "id": "CVE-2024-56688-26f7d6b5", "signature_type": "Function", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4db9ad82a6c823094da27de4825af693a3475d51", "deprecated": false, "digest": { "function_hash": "141079492802437495048167440446478332478", "length": 476.0 }, "target": { "file": "net/sunrpc/xprtsock.c", "function": "xs_sock_reset_state_flags" }, "id": "CVE-2024-56688-33ddecb1", "signature_type": "Function", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@87a95ee34a48dfad198a2002e4966e1d63d53f2b", "deprecated": false, "digest": { "line_hashes": [ "309746794442807039438172622117919344730", "174395668746787550906031580951785450150", "304495145853900742654923378621818337120", "318457133593918278984296471290416774554" ], "threshold": 0.9 }, "target": { "file": "net/sunrpc/xprtsock.c" }, "id": "CVE-2024-56688-4a367de1", "signature_type": "Line", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@86a1f9fa24804cd7f9d7dd3f24af84fc7f8ec02e", "deprecated": false, "digest": { "line_hashes": [ "309746794442807039438172622117919344730", "174395668746787550906031580951785450150", "304495145853900742654923378621818337120", "318457133593918278984296471290416774554" ], "threshold": 0.9 }, "target": { "file": "net/sunrpc/xprtsock.c" }, "id": "CVE-2024-56688-74d1f00a", "signature_type": "Line", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@66d11ca91bf5100ae2e6b5efad97e58d8448843a", "deprecated": false, "digest": { "line_hashes": [ "309746794442807039438172622117919344730", "174395668746787550906031580951785450150", "304495145853900742654923378621818337120", "318457133593918278984296471290416774554" ], "threshold": 0.9 }, "target": { "file": "net/sunrpc/xprtsock.c" }, "id": "CVE-2024-56688-8f56c3fb", "signature_type": "Line", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@638a8fa5a7e641f9401346c57e236f02379a0c40", "deprecated": false, "digest": { "line_hashes": [ "309746794442807039438172622117919344730", "174395668746787550906031580951785450150", "304495145853900742654923378621818337120", "318457133593918278984296471290416774554" ], "threshold": 0.9 }, "target": { "file": "net/sunrpc/xprtsock.c" }, "id": "CVE-2024-56688-9111dcbf", "signature_type": "Line", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3811172e8c98ceebd12fe526ca6cb37a1263c964", "deprecated": false, "digest": { "function_hash": "258601859723832638950487532948260767331", "length": 448.0 }, "target": { "file": "net/sunrpc/xprtsock.c", "function": "xs_sock_reset_state_flags" }, "id": "CVE-2024-56688-9963cdd4", "signature_type": "Function", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@fe6cbf0b2ac3cf4e21824a44eaa336564ed5e960", "deprecated": false, "digest": { "line_hashes": [ "309746794442807039438172622117919344730", "174395668746787550906031580951785450150", "304495145853900742654923378621818337120", "318457133593918278984296471290416774554" ], "threshold": 0.9 }, "target": { "file": "net/sunrpc/xprtsock.c" }, "id": "CVE-2024-56688-ac2f50a4", "signature_type": "Line", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@66d11ca91bf5100ae2e6b5efad97e58d8448843a", "deprecated": false, "digest": { "function_hash": "141079492802437495048167440446478332478", "length": 476.0 }, "target": { "file": "net/sunrpc/xprtsock.c", "function": "xs_sock_reset_state_flags" }, "id": "CVE-2024-56688-c95d1d66", "signature_type": "Function", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@86a1f9fa24804cd7f9d7dd3f24af84fc7f8ec02e", "deprecated": false, "digest": { "function_hash": "258601859723832638950487532948260767331", "length": 448.0 }, "target": { "file": "net/sunrpc/xprtsock.c", "function": "xs_sock_reset_state_flags" }, "id": "CVE-2024-56688-e8c41aa5", "signature_type": "Function", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@638a8fa5a7e641f9401346c57e236f02379a0c40", "deprecated": false, "digest": { "function_hash": "141079492802437495048167440446478332478", "length": 476.0 }, "target": { "file": "net/sunrpc/xprtsock.c", "function": "xs_sock_reset_state_flags" }, "id": "CVE-2024-56688-f1f8a460", "signature_type": "Function", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@87a95ee34a48dfad198a2002e4966e1d63d53f2b", "deprecated": false, "digest": { "function_hash": "258601859723832638950487532948260767331", "length": 448.0 }, "target": { "file": "net/sunrpc/xprtsock.c", "function": "xs_sock_reset_state_flags" }, "id": "CVE-2024-56688-f57430b4", "signature_type": "Function", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4db9ad82a6c823094da27de4825af693a3475d51", "deprecated": false, "digest": { "line_hashes": [ "309746794442807039438172622117919344730", "174395668746787550906031580951785450150", "304495145853900742654923378621818337120", "318457133593918278984296471290416774554" ], "threshold": 0.9 }, "target": { "file": "net/sunrpc/xprtsock.c" }, "id": "CVE-2024-56688-ff6e6ded", "signature_type": "Line", "signature_version": "v1" } ]