CVE - CVE-2024-56688

CVE-ID
CVE-2024-56688	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
In the Linux kernel, the following vulnerability has been resolved: sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport Since transport->sock has been set to NULL during reset transport, XPRT_SOCK_UPD_TIMEOUT also needs to be cleared. Otherwise, the xs_tcp_set_socket_timeouts() may be triggered in xs_tcp_send_request() to dereference the transport->sock that has been set to NULL.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:https://git.kernel.org/stable/c/3811172e8c98ceebd12fe526ca6cb37a1263c964 URL:https://git.kernel.org/stable/c/3811172e8c98ceebd12fe526ca6cb37a1263c964 MISC:https://git.kernel.org/stable/c/4db9ad82a6c823094da27de4825af693a3475d51 URL:https://git.kernel.org/stable/c/4db9ad82a6c823094da27de4825af693a3475d51 MISC:https://git.kernel.org/stable/c/638a8fa5a7e641f9401346c57e236f02379a0c40 URL:https://git.kernel.org/stable/c/638a8fa5a7e641f9401346c57e236f02379a0c40 MISC:https://git.kernel.org/stable/c/66d11ca91bf5100ae2e6b5efad97e58d8448843a URL:https://git.kernel.org/stable/c/66d11ca91bf5100ae2e6b5efad97e58d8448843a MISC:https://git.kernel.org/stable/c/86a1f9fa24804cd7f9d7dd3f24af84fc7f8ec02e URL:https://git.kernel.org/stable/c/86a1f9fa24804cd7f9d7dd3f24af84fc7f8ec02e MISC:https://git.kernel.org/stable/c/87a95ee34a48dfad198a2002e4966e1d63d53f2b URL:https://git.kernel.org/stable/c/87a95ee34a48dfad198a2002e4966e1d63d53f2b MISC:https://git.kernel.org/stable/c/cc91d59d34ff6a6fee1c0b48612081a451e05e9a URL:https://git.kernel.org/stable/c/cc91d59d34ff6a6fee1c0b48612081a451e05e9a MISC:https://git.kernel.org/stable/c/fe6cbf0b2ac3cf4e21824a44eaa336564ed5e960 URL:https://git.kernel.org/stable/c/fe6cbf0b2ac3cf4e21824a44eaa336564ed5e960
Assigning CNA
kernel.org
Date Record Created
20241227	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20241227)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)

Use of the CVE® List and the associated references from this website are subject to the terms of use. CVE is sponsored by the U.S. Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA). Copyright © 1999–2025, The MITRE Corporation. CVE and the CVE logo are registered trademarks of The MITRE Corporation.