CVE-2024-26585
Public on 2024-02-21
Modified on 2024-03-05
Description
In the Linux kernel, the following vulnerability has been resolved:
tls: fix race between tx work scheduling and socket close
Similarly to previous commit, the submitting thread (recvmsg/sendmsg)
may exit as soon as the async crypto handler calls complete().
Reorder scheduling the work before calling complete().
This seems more logical in the first place, as it's
the inverse order of what the submitting thread will do.
tls: fix race between tx work scheduling and socket close
Similarly to previous commit, the submitting thread (recvmsg/sendmsg)
may exit as soon as the async crypto handler calls complete().
Reorder scheduling the work before calling complete().
This seems more logical in the first place, as it's
the inverse order of what the submitting thread will do.
Severity
Medium
CVSS v3 Base Score
See breakdown
Affected Packages
| Platform | Package | Release Date | Advisory | Status |
|---|---|---|---|---|
| HAQM Linux 1 | kernel | Not Affected | ||
| HAQM Linux 2 - Kernel-5.10 Extra | kernel | Pending Fix | ||
| HAQM Linux 2 - Kernel-5.4 Extra | kernel | Pending Fix | ||
| HAQM Linux 2 - Core | kernel | Not Affected | ||
| HAQM Linux 2 - Kernel-5.15 Extra | kernel | 2024-08-28 | ALAS2KERNEL-5.15-2024-051 | Fixed |
| HAQM Linux 2 - Kernel-5.15 Extra | kernel | 2025-03-03 | ALAS2KERNEL-5.15-2025-065 | Fixed |
| HAQM Linux 2023 | kernel | 2024-04-10 | ALAS2023-2024-585 | Fixed |
| HAQM Linux 2023 | kernel | 2024-08-01 | ALAS2023-2024-696 | Fixed |
CVSS Scores
| Score Type | Score | Vector | |
|---|---|---|---|
| HAQM Linux | CVSSv3 | 6.5 | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
| NVD | CVSSv3 | 4.7 | CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H |