CVE-2024-26585

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2024-26585

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-26585.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2024-26585

Downstream

BELL-CVE-2024-26585

DEBIAN-CVE-2024-26585

DSA-5658-1

OESA-2024-1394

OESA-2024-1395

OESA-2024-1396

OESA-2024-1397

RHSA-2024:2394

RHSA-2024:4211

RHSA-2024:4352

RHSA-2024:4447

RHSA-2024:4533

RHSA-2024:4554

RHSA-2024:5255

RLSA-2024:4211

RLSA-2024:4352

ROOT-OS-DEBIAN-11-CVE-2024-26585

RXSA-2024:4211

SUSE-SU-2024:0855-1

SUSE-SU-2024:0856-1

SUSE-SU-2024:0857-1

SUSE-SU-2024:0858-1

SUSE-SU-2024:0900-1

SUSE-SU-2024:0900-2

SUSE-SU-2024:0910-1

SUSE-SU-2024:0925-1

SUSE-SU-2024:0926-1

SUSE-SU-2024:0975-1

SUSE-SU-2024:0976-1

SUSE-SU-2024:0977-1

SUSE-SU-2024:1677-1

SUSE-SU-2024:1679-1

SUSE-SU-2024:1680-1

SUSE-SU-2024:1682-1

SUSE-SU-2024:1685-1

SUSE-SU-2024:1686-1

SUSE-SU-2024:1692-1

SUSE-SU-2024:1695-1

SUSE-SU-2024:1696-1

SUSE-SU-2024:1705-1

SUSE-SU-2024:1706-1

SUSE-SU-2024:1707-1

SUSE-SU-2024:1709-1

SUSE-SU-2024:1711-1

SUSE-SU-2024:1712-1

SUSE-SU-2024:1713-1

SUSE-SU-2024:1720-1

SUSE-SU-2024:1726-1

SUSE-SU-2024:1729-1

SUSE-SU-2024:1732-1

SUSE-SU-2024:1735-1

SUSE-SU-2024:1736-1

SUSE-SU-2024:1739-1

SUSE-SU-2024:1740-1

SUSE-SU-2024:1742-1

SUSE-SU-2024:1746-1

SUSE-SU-2024:1748-1

SUSE-SU-2024:1749-1

SUSE-SU-2024:1751-1

SUSE-SU-2024:1757-1

SUSE-SU-2024:1759-1

SUSE-SU-2024:2092-1

SUSE-SU-2024:2162-1

SUSE-SU-2024:2207-1

SUSE-SU-2024:2337-1

SUSE-SU-2024:2446-1

SUSE-SU-2024:2722-1

SUSE-SU-2024:2824-1

SUSE-SU-2024:2850-1

SUSE-SU-2024:2894-1

SUSE-SU-2024:2923-1

SUSE-SU-2024:2929-1

SUSE-SU-2024:2947-1

SUSE-SU-2024:2948-1

SUSE-SU-2024:3379-1

SUSE-SU-2024:3399-1

SUSE-SU-2024:3631-1

SUSE-SU-2024:3694-1

SUSE-SU-2024:3793-1

SUSE-SU-2024:3829-1

SUSE-SU-2024:3852-1

SUSE-SU-2024:4122-1

SUSE-SU-2024:4218-1

SUSE-SU-2024:4234-1

SUSE-SU-2025:0107-1

SUSE-SU-2025:0158-1

SUSE-SU-2025:0261-1

SUSE-SU-2025:0266-1

Related

Published

2024-02-21T14:59:13.088Z

Modified

2026-03-14T12:27:39.208601Z

Summary

tls: fix race between tx work scheduling and socket close

Details

In the Linux kernel, the following vulnerability has been resolved:

tls: fix race between tx work scheduling and socket close

Similarly to previous commit, the submitting thread (recvmsg/sendmsg) may exit as soon as the async crypto handler calls complete(). Reorder scheduling the work before calling complete(). This seems more logical in the first place, as it's the inverse order of what the submitting thread will do.

Database specific

{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/26xxx/CVE-2024-26585.json"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

a42055e8d2c30d4decfc13ce943d09c7b9dad221

Fixed

dd32621f19243f89ce830919496a5dcc2158aa33

Fixed

196f198ca6fce04ba6ce262f5a0e4d567d7d219d

Fixed

6db22d6c7a6dc914b12c0469b94eb639b6a8a146

Fixed

e327ed60bff4a991cd7a709c47c4f0c5b4a4fd57

Fixed

e01e3934a1b2d122919f73bc6ddbe1cdafc4bbdb

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-26585.json"