Description

In the Linux kernel, the following vulnerability has been resolved: net: inet: do not leave a dangling sk pointer in inet_create() sock_init_data() attaches the allocated sk object to the provided sock object. If inet_create() fails later, the sk object is freed, but the sock object retains the dangling pointer, which may create use-after-free later. Clear the sk pointer in the sock object on error.

INFO

Published Date :

2024-12-27T14:51:07.358Z

Last Modified :

2025-11-03T20:50:40.940Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-56601 vulnerability.

Vendors Products
Linux
  • Linux Kernel
Redhat
  • Enterprise Linux
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-56601.

URL Resource
https://git.kernel.org/stable/c/25447c6aaa7235f155292b0c58a067347e8ae891 cve-icon cve-icon
https://git.kernel.org/stable/c/2bc34d8c8898ae9fddf4612501aabb22d76c2b2c cve-icon cve-icon
https://git.kernel.org/stable/c/3e8258070b0f2aba66b3ef18883de229674fb288 cve-icon cve-icon
https://git.kernel.org/stable/c/691d6d816f93b2a1008c14178399061466e674ef cve-icon cve-icon
https://git.kernel.org/stable/c/9365fa510c6f82e3aa550a09d0c5c6b44dbc78ff cve-icon cve-icon
https://git.kernel.org/stable/c/b4513cfd3a10c03c660d5d3d26c2e322efbfdd9b cve-icon cve-icon
https://git.kernel.org/stable/c/f8a3f255f7509a209292871715cda03779640c8d cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2025/03/msg00001.html cve-icon
https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html cve-icon
https://lore.kernel.org/linux-cve-announce/2024122703-CVE-2024-56601-2150@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-56601 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-56601 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact