In the Linux kernel, the following vulnerability has been resolved:
rxrpc: Fix delayed ACKs to not set the reference serial number
Fix the construction of delayed ACKs to not set the reference serial number as they can't be used as an RTT reference.
{ "vanir_signatures": [ { "id": "CVE-2024-26677-15d8ae27", "signature_type": "Line", "target": { "file": "net/rxrpc/ar-internal.h" }, "signature_version": "v1", "digest": { "line_hashes": [ "224819678957011438940567323193215778335", "139365576762569721717009315488965709191", "300922898431412132338381228517049600185", "56296552734617165192043566904574278648" ], "threshold": 0.9 }, "deprecated": false, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@200cb50b9e154434470c8969d32474d38475acc2" }, { "id": "CVE-2024-26677-71625f80", "signature_type": "Line", "target": { "file": "net/rxrpc/call_event.c" }, "signature_version": "v1", "digest": { "line_hashes": [ "266985752938523823850404154254423807397", "22979705703143326609829022636229019836", "279464888739594537011787662442355458391", "155629741814705488840914226697929318077", "209997819704846154177476784209306856048", "195555453373344059833785284719225989092", "276257644912940237231803999605306349497", "159242275515531983780638288346898495907", "170808287718288157023695365685134250462", "44141617385938953110378769748361108486", "129747875511919173782433492549417930776", "137526594794294369769051524903301570593", "278113020421302050434915034951062084751" ], "threshold": 0.9 }, "deprecated": false, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e7870cf13d20f56bfc19f9c3e89707c69cf104ef" }, { "id": "CVE-2024-26677-758256c9", "signature_type": "Function", "target": { "file": "net/rxrpc/call_event.c", "function": "rxrpc_propose_delay_ACK" }, "signature_version": "v1", "digest": { "length": 608.0, "function_hash": "178120951931641633350028904868071711513" }, "deprecated": false, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e7870cf13d20f56bfc19f9c3e89707c69cf104ef" }, { "id": "CVE-2024-26677-7e8dbb77", "signature_type": "Function", "target": { "file": "net/rxrpc/call_event.c", "function": "rxrpc_propose_delay_ACK" }, "signature_version": "v1", "digest": { "length": 608.0, "function_hash": "178120951931641633350028904868071711513" }, "deprecated": false, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@200cb50b9e154434470c8969d32474d38475acc2" }, { "id": "CVE-2024-26677-a21d34d7", "signature_type": "Function", "target": { "file": "net/rxrpc/call_event.c", "function": "rxrpc_input_call_event" }, "signature_version": "v1", "digest": { "length": 4591.0, "function_hash": "79349671427345336903779869513939409573" }, "deprecated": false, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@200cb50b9e154434470c8969d32474d38475acc2" }, { "id": "CVE-2024-26677-a849755a", "signature_type": "Function", "target": { "file": "net/rxrpc/call_event.c", "function": "rxrpc_input_call_event" }, "signature_version": "v1", "digest": { "length": 4591.0, "function_hash": "79349671427345336903779869513939409573" }, "deprecated": false, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e7870cf13d20f56bfc19f9c3e89707c69cf104ef" }, { "id": "CVE-2024-26677-af286530", "signature_type": "Line", "target": { "file": "net/rxrpc/call_event.c" }, "signature_version": "v1", "digest": { "line_hashes": [ "266985752938523823850404154254423807397", "22979705703143326609829022636229019836", "279464888739594537011787662442355458391", "155629741814705488840914226697929318077", "209997819704846154177476784209306856048", "195555453373344059833785284719225989092", "276257644912940237231803999605306349497", "159242275515531983780638288346898495907", "170808287718288157023695365685134250462", "44141617385938953110378769748361108486", "129747875511919173782433492549417930776", "137526594794294369769051524903301570593", "278113020421302050434915034951062084751" ], "threshold": 0.9 }, "deprecated": false, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@200cb50b9e154434470c8969d32474d38475acc2" }, { "id": "CVE-2024-26677-e7d9cd0b", "signature_type": "Line", "target": { "file": "net/rxrpc/ar-internal.h" }, "signature_version": "v1", "digest": { "line_hashes": [ "224819678957011438940567323193215778335", "139365576762569721717009315488965709191", "300922898431412132338381228517049600185", "56296552734617165192043566904574278648" ], "threshold": 0.9 }, "deprecated": false, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e7870cf13d20f56bfc19f9c3e89707c69cf104ef" } ] }