CVE-2024-56688

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2024-56688
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-56688.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-56688
Downstream
Related
Published
2024-12-28T09:46:14.905Z
Modified
2026-03-11T07:44:12.078753Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport
Details

In the Linux kernel, the following vulnerability has been resolved:

sunrpc: clear XPRTSOCKUPD_TIMEOUT when reset transport

Since transport->sock has been set to NULL during reset transport, XPRTSOCKUPDTIMEOUT also needs to be cleared. Otherwise, the xstcpsetsockettimeouts() may be triggered in xstcpsendrequest() to dereference the transport->sock that has been set to NULL.

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/56xxx/CVE-2024-56688.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
7196dbb02ea05835b9ee56910ee82cb55422c7f1
Fixed
cc91d59d34ff6a6fee1c0b48612081a451e05e9a
Fixed
86a1f9fa24804cd7f9d7dd3f24af84fc7f8ec02e
Fixed
fe6cbf0b2ac3cf4e21824a44eaa336564ed5e960
Fixed
87a95ee34a48dfad198a2002e4966e1d63d53f2b
Fixed
3811172e8c98ceebd12fe526ca6cb37a1263c964
Fixed
638a8fa5a7e641f9401346c57e236f02379a0c40
Fixed
66d11ca91bf5100ae2e6b5efad97e58d8448843a
Fixed
4db9ad82a6c823094da27de4825af693a3475d51

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-56688.json"