What is the severity of CVE-2024-56600?

CVE-2024-56600 is classified as a moderate severity vulnerability.

How do I fix CVE-2024-56600?

To fix CVE-2024-56600, update your Linux kernel to a version that includes the patch for this vulnerability.

What versions of the Linux kernel are affected by CVE-2024-56600?

CVE-2024-56600 affects Linux kernel versions up to 5.4.287 and several versions between 5.5 and 6.12.5.

What type of vulnerability is CVE-2024-56600?

CVE-2024-56600 is a memory management vulnerability related to the inet6_create() function in the Linux kernel.

What issues can CVE-2024-56600 cause?

CVE-2024-56600 can lead to potential remote code execution or denial of service due to improper socket handling.

Vulnerability/
CVE-2024-56600

high

7.8

CWE

416

27/12/2024

20/1/2025

CVE-2024-56600: net: inet6: do not leave a dangling sk pointer in inet6_create()

First published: Fri Dec 27 2024(Updated: )

In the Linux kernel, the following vulnerability has been resolved: net: inet6: do not leave a dangling sk pointer in inet6_create() sock_init_data() attaches the allocated sk pointer to the provided sock object. If inet6_create() fails later, the sk object is released, but the sock object retains the dangling sk pointer, which may cause use-after-free later. Clear the sock sk pointer on error.

Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Affected Software	Affected Version	How to fix
Linux Kernel	<5.4.287
Linux Kernel	>=5.5<5.10.231
Linux Kernel	>=5.11<5.15.174
Linux Kernel	>=5.16<6.1.120
Linux Kernel	>=6.2<6.6.66
Linux Kernel	>=6.7<6.12.5

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2024-56600?
CVE-2024-56600 is classified as a moderate severity vulnerability.
How do I fix CVE-2024-56600?
To fix CVE-2024-56600, update your Linux kernel to a version that includes the patch for this vulnerability.
What versions of the Linux kernel are affected by CVE-2024-56600?
CVE-2024-56600 affects Linux kernel versions up to 5.4.287 and several versions between 5.5 and 6.12.5.
What type of vulnerability is CVE-2024-56600?
CVE-2024-56600 is a memory management vulnerability related to the inet6_create() function in the Linux kernel.
What issues can CVE-2024-56600 cause?
CVE-2024-56600 can lead to potential remote code execution or denial of service due to improper socket handling.

agent/title
agent/references
agent/type
agent/description
agent/first-publish-date
agent/author
agent/event
agent/remedy
agent/severity
agent/softwarecombine
agent/source
agent/tags
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/weakness
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/linux
canonical/linux kernel
version/linux kernel/5.5
version/linux kernel/5.11
version/linux kernel/5.16
version/linux kernel/6.2
version/linux kernel/6.7

Frequently Asked Questions

What is the severity of CVE-2024-56600?
CVE-2024-56600 is classified as a moderate severity vulnerability.
How do I fix CVE-2024-56600?
To fix CVE-2024-56600, update your Linux kernel to a version that includes the patch for this vulnerability.
What versions of the Linux kernel are affected by CVE-2024-56600?
CVE-2024-56600 affects Linux kernel versions up to 5.4.287 and several versions between 5.5 and 6.12.5.
What type of vulnerability is CVE-2024-56600?
CVE-2024-56600 is a memory management vulnerability related to the inet6_create() function in the Linux kernel.
What issues can CVE-2024-56600 cause?
CVE-2024-56600 can lead to potential remote code execution or denial of service due to improper socket handling.

CVE-2024-56600: net: inet6: do not leave a dangling sk pointer in inet6_create()

Remedy

Remedy

Remedy

Remedy

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2024-56600?

How do I fix CVE-2024-56600?

What versions of the Linux kernel are affected by CVE-2024-56600?

What type of vulnerability is CVE-2024-56600?

What issues can CVE-2024-56600 cause?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2024-56600?

How do I fix CVE-2024-56600?

What versions of the Linux kernel are affected by CVE-2024-56600?

What type of vulnerability is CVE-2024-56600?

What issues can CVE-2024-56600 cause?