CVE 2024-26583
In the Linux kernel, the following vulnerability has been resolved: tls: fix race between async notify and socket close The submitting thread (one which called recvmsg/sendmsg) may exit as soon as the async crypto handler calls complete() so any code past that point risks touching already freed data. Try to avoid the locking and extra flags altogether. Have the main thread hold an extra reference, this way we can depend solely on the atomic ref counter for synchronization. Don't futz with reiniting the completion, either, we are now tightly controlling when completion fires.
Related bugs and status
CVE-2024-26583 (Candidate) is related to these bugs:
Bug #2059424: jammy/linux-azure-6.5: 6.5.0-1020.21~22.04.1 -proposed tracker
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 2059424 | jammy/linux-azure-6.5: 6.5.0-1020.21~22.04.1 -proposed tracker | Kernel SRU Workflow | Medium | Fix Committed | ||
| 2059424 | jammy/linux-azure-6.5: 6.5.0-1020.21~22.04.1 -proposed tracker | Kernel SRU Workflow abi-testing | Medium | Fix Released | ||
| 2059424 | jammy/linux-azure-6.5: 6.5.0-1020.21~22.04.1 -proposed tracker | Kernel SRU Workflow automated-testing | Medium | Fix Released | ||
| 2059424 | jammy/linux-azure-6.5: 6.5.0-1020.21~22.04.1 -proposed tracker | Kernel SRU Workflow boot-testing | Medium | Fix Released | ||
| 2059424 | jammy/linux-azure-6.5: 6.5.0-1020.21~22.04.1 -proposed tracker | Kernel SRU Workflow certification-testing | Medium | Invalid | ||
| 2059424 | jammy/linux-azure-6.5: 6.5.0-1020.21~22.04.1 -proposed tracker | Kernel SRU Workflow new-review | Medium | Fix Released | ||
| 2059424 | jammy/linux-azure-6.5: 6.5.0-1020.21~22.04.1 -proposed tracker | Kernel SRU Workflow prepare-package | Medium | Fix Released | ||
| 2059424 | jammy/linux-azure-6.5: 6.5.0-1020.21~22.04.1 -proposed tracker | Kernel SRU Workflow prepare-package-generate | Medium | Fix Released | ||
| 2059424 | jammy/linux-azure-6.5: 6.5.0-1020.21~22.04.1 -proposed tracker | Kernel SRU Workflow prepare-package-lrg | Medium | Fix Released | ||
| 2059424 | jammy/linux-azure-6.5: 6.5.0-1020.21~22.04.1 -proposed tracker | Kernel SRU Workflow prepare-package-lrm | Medium | Fix Released | ||
| 2059424 | jammy/linux-azure-6.5: 6.5.0-1020.21~22.04.1 -proposed tracker | Kernel SRU Workflow prepare-package-lrs | Medium | Fix Released | ||
| 2059424 | jammy/linux-azure-6.5: 6.5.0-1020.21~22.04.1 -proposed tracker | Kernel SRU Workflow prepare-package-meta | Medium | Fix Released | ||
| 2059424 | jammy/linux-azure-6.5: 6.5.0-1020.21~22.04.1 -proposed tracker | Kernel SRU Workflow prepare-package-signed | Medium | Fix Released | ||
| 2059424 | jammy/linux-azure-6.5: 6.5.0-1020.21~22.04.1 -proposed tracker | Kernel SRU Workflow promote-signing-to-proposed | Medium | Invalid | ||
| 2059424 | jammy/linux-azure-6.5: 6.5.0-1020.21~22.04.1 -proposed tracker | Kernel SRU Workflow promote-to-proposed | Medium | Fix Released | ||
| 2059424 | jammy/linux-azure-6.5: 6.5.0-1020.21~22.04.1 -proposed tracker | Kernel SRU Workflow promote-to-security | Medium | New | ||
| 2059424 | jammy/linux-azure-6.5: 6.5.0-1020.21~22.04.1 -proposed tracker | Kernel SRU Workflow promote-to-updates | Medium | New | ||
| 2059424 | jammy/linux-azure-6.5: 6.5.0-1020.21~22.04.1 -proposed tracker | Kernel SRU Workflow regression-testing | Medium | Fix Released | ||
| 2059424 | jammy/linux-azure-6.5: 6.5.0-1020.21~22.04.1 -proposed tracker | Kernel SRU Workflow security-signoff | Medium | Fix Released | ||
| 2059424 | jammy/linux-azure-6.5: 6.5.0-1020.21~22.04.1 -proposed tracker | Kernel SRU Workflow sru-review | Medium | Fix Released | ||
| 2059424 | jammy/linux-azure-6.5: 6.5.0-1020.21~22.04.1 -proposed tracker | Kernel SRU Workflow stakeholder-signoff | Medium | In Progress | ||
| 2059424 | jammy/linux-azure-6.5: 6.5.0-1020.21~22.04.1 -proposed tracker | Kernel SRU Workflow verification-testing | Medium | Fix Released | ||
| 2059424 | jammy/linux-azure-6.5: 6.5.0-1020.21~22.04.1 -proposed tracker | linux-azure-6.5 (Ubuntu Jammy) | Medium | Fix Released | ||
| 2059424 | jammy/linux-azure-6.5: 6.5.0-1020.21~22.04.1 -proposed tracker | canonical-signing-jobs task00 | Medium | Fix Released | ||
Bug #2059425: mantic/linux-azure: 6.5.0-1020.21 -proposed tracker
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 2059425 | mantic/linux-azure: 6.5.0-1020.21 -proposed tracker | Kernel SRU Workflow | Medium | Fix Committed | ||
| 2059425 | mantic/linux-azure: 6.5.0-1020.21 -proposed tracker | Kernel SRU Workflow abi-testing | Medium | Fix Released | ||
| 2059425 | mantic/linux-azure: 6.5.0-1020.21 -proposed tracker | Kernel SRU Workflow automated-testing | Medium | Fix Released | ||
| 2059425 | mantic/linux-azure: 6.5.0-1020.21 -proposed tracker | Kernel SRU Workflow boot-testing | Medium | Fix Released | ||
| 2059425 | mantic/linux-azure: 6.5.0-1020.21 -proposed tracker | Kernel SRU Workflow certification-testing | Medium | Invalid | ||
| 2059425 | mantic/linux-azure: 6.5.0-1020.21 -proposed tracker | Kernel SRU Workflow new-review | Medium | Fix Released | ||
| 2059425 | mantic/linux-azure: 6.5.0-1020.21 -proposed tracker | Kernel SRU Workflow prepare-package | Medium | Fix Released | ||
| 2059425 | mantic/linux-azure: 6.5.0-1020.21 -proposed tracker | Kernel SRU Workflow prepare-package-generate | Medium | Fix Released | ||
| 2059425 | mantic/linux-azure: 6.5.0-1020.21 -proposed tracker | Kernel SRU Workflow prepare-package-lrg | Medium | Fix Released | ||
| 2059425 | mantic/linux-azure: 6.5.0-1020.21 -proposed tracker | Kernel SRU Workflow prepare-package-lrm | Medium | Fix Released | ||
| 2059425 | mantic/linux-azure: 6.5.0-1020.21 -proposed tracker | Kernel SRU Workflow prepare-package-lrs | Medium | Fix Released | ||
| 2059425 | mantic/linux-azure: 6.5.0-1020.21 -proposed tracker | Kernel SRU Workflow prepare-package-meta | Medium | Fix Released | ||
| 2059425 | mantic/linux-azure: 6.5.0-1020.21 -proposed tracker | Kernel SRU Workflow prepare-package-signed | Medium | Fix Released | ||
| 2059425 | mantic/linux-azure: 6.5.0-1020.21 -proposed tracker | Kernel SRU Workflow promote-signing-to-proposed | Medium | Invalid | ||
| 2059425 | mantic/linux-azure: 6.5.0-1020.21 -proposed tracker | Kernel SRU Workflow promote-to-proposed | Medium | Fix Released | ||
| 2059425 | mantic/linux-azure: 6.5.0-1020.21 -proposed tracker | Kernel SRU Workflow promote-to-security | Medium | New | ||
| 2059425 | mantic/linux-azure: 6.5.0-1020.21 -proposed tracker | Kernel SRU Workflow promote-to-updates | Medium | New | ||
| 2059425 | mantic/linux-azure: 6.5.0-1020.21 -proposed tracker | Kernel SRU Workflow regression-testing | Medium | Fix Released | ||
| 2059425 | mantic/linux-azure: 6.5.0-1020.21 -proposed tracker | Kernel SRU Workflow security-signoff | Medium | Fix Released | ||
| 2059425 | mantic/linux-azure: 6.5.0-1020.21 -proposed tracker | Kernel SRU Workflow sru-review | Medium | Fix Released | ||
| 2059425 | mantic/linux-azure: 6.5.0-1020.21 -proposed tracker | Kernel SRU Workflow stakeholder-signoff | Medium | Fix Released | ||
| 2059425 | mantic/linux-azure: 6.5.0-1020.21 -proposed tracker | Kernel SRU Workflow verification-testing | Medium | Fix Released | ||
| 2059425 | mantic/linux-azure: 6.5.0-1020.21 -proposed tracker | linux-azure (Ubuntu Mantic) | Medium | Fix Released | ||
| 2059425 | mantic/linux-azure: 6.5.0-1020.21 -proposed tracker | canonical-signing-jobs task00 | Medium | Fix Released | ||
Bug #2063561: jammy/linux-azure-6.5: 6.5.0-1021.22~22.04.1 -proposed tracker
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 2063561 | jammy/linux-azure-6.5: 6.5.0-1021.22~22.04.1 -proposed tracker | Kernel SRU Workflow | Medium | Fix Committed | ||
| 2063561 | jammy/linux-azure-6.5: 6.5.0-1021.22~22.04.1 -proposed tracker | Kernel SRU Workflow abi-testing | Medium | Fix Released | ||
| 2063561 | jammy/linux-azure-6.5: 6.5.0-1021.22~22.04.1 -proposed tracker | Kernel SRU Workflow automated-testing | Medium | Invalid | ||
| 2063561 | jammy/linux-azure-6.5: 6.5.0-1021.22~22.04.1 -proposed tracker | Kernel SRU Workflow boot-testing | Medium | Fix Released | ||
| 2063561 | jammy/linux-azure-6.5: 6.5.0-1021.22~22.04.1 -proposed tracker | Kernel SRU Workflow certification-testing | Medium | Invalid | ||
| 2063561 | jammy/linux-azure-6.5: 6.5.0-1021.22~22.04.1 -proposed tracker | Kernel SRU Workflow new-review | Medium | Fix Released | ||
| 2063561 | jammy/linux-azure-6.5: 6.5.0-1021.22~22.04.1 -proposed tracker | Kernel SRU Workflow prepare-package | Medium | Fix Released | ||
| 2063561 | jammy/linux-azure-6.5: 6.5.0-1021.22~22.04.1 -proposed tracker | Kernel SRU Workflow prepare-package-generate | Medium | Fix Released | ||
| 2063561 | jammy/linux-azure-6.5: 6.5.0-1021.22~22.04.1 -proposed tracker | Kernel SRU Workflow prepare-package-lrg | Medium | Fix Released | ||
| 2063561 | jammy/linux-azure-6.5: 6.5.0-1021.22~22.04.1 -proposed tracker | Kernel SRU Workflow prepare-package-lrm | Medium | Fix Released | ||
| 2063561 | jammy/linux-azure-6.5: 6.5.0-1021.22~22.04.1 -proposed tracker | Kernel SRU Workflow prepare-package-lrs | Medium | Fix Released | ||
| 2063561 | jammy/linux-azure-6.5: 6.5.0-1021.22~22.04.1 -proposed tracker | Kernel SRU Workflow prepare-package-meta | Medium | Fix Released | ||
| 2063561 | jammy/linux-azure-6.5: 6.5.0-1021.22~22.04.1 -proposed tracker | Kernel SRU Workflow prepare-package-signed | Medium | Fix Released | ||
| 2063561 | jammy/linux-azure-6.5: 6.5.0-1021.22~22.04.1 -proposed tracker | Kernel SRU Workflow promote-signing-to-proposed | Medium | Invalid | ||
| 2063561 | jammy/linux-azure-6.5: 6.5.0-1021.22~22.04.1 -proposed tracker | Kernel SRU Workflow promote-to-proposed | Medium | Fix Released | ||
| 2063561 | jammy/linux-azure-6.5: 6.5.0-1021.22~22.04.1 -proposed tracker | Kernel SRU Workflow promote-to-security | Medium | Fix Released | ||
| 2063561 | jammy/linux-azure-6.5: 6.5.0-1021.22~22.04.1 -proposed tracker | Kernel SRU Workflow promote-to-updates | Medium | Fix Released | ||
| 2063561 | jammy/linux-azure-6.5: 6.5.0-1021.22~22.04.1 -proposed tracker | Kernel SRU Workflow regression-testing | Medium | Fix Released | ||
| 2063561 | jammy/linux-azure-6.5: 6.5.0-1021.22~22.04.1 -proposed tracker | Kernel SRU Workflow security-signoff | Medium | Fix Released | ||
| 2063561 | jammy/linux-azure-6.5: 6.5.0-1021.22~22.04.1 -proposed tracker | Kernel SRU Workflow sru-review | Medium | Fix Released | ||
| 2063561 | jammy/linux-azure-6.5: 6.5.0-1021.22~22.04.1 -proposed tracker | Kernel SRU Workflow stakeholder-signoff | Medium | Fix Released | ||
| 2063561 | jammy/linux-azure-6.5: 6.5.0-1021.22~22.04.1 -proposed tracker | Kernel SRU Workflow verification-testing | Medium | Fix Released | ||
| 2063561 | jammy/linux-azure-6.5: 6.5.0-1021.22~22.04.1 -proposed tracker | linux-azure-6.5 (Ubuntu Jammy) | Medium | Fix Released | ||
| 2063561 | jammy/linux-azure-6.5: 6.5.0-1021.22~22.04.1 -proposed tracker | canonical-signing-jobs task00 | Medium | Fix Released | ||
Bug #2063562: mantic/linux-azure: 6.5.0-1021.22 -proposed tracker
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 2063562 | mantic/linux-azure: 6.5.0-1021.22 -proposed tracker | Kernel SRU Workflow | Medium | Fix Committed | ||
| 2063562 | mantic/linux-azure: 6.5.0-1021.22 -proposed tracker | Kernel SRU Workflow abi-testing | Medium | Fix Released | ||
| 2063562 | mantic/linux-azure: 6.5.0-1021.22 -proposed tracker | Kernel SRU Workflow automated-testing | Medium | Invalid | ||
| 2063562 | mantic/linux-azure: 6.5.0-1021.22 -proposed tracker | Kernel SRU Workflow boot-testing | Medium | Fix Released | ||
| 2063562 | mantic/linux-azure: 6.5.0-1021.22 -proposed tracker | Kernel SRU Workflow certification-testing | Medium | Invalid | ||
| 2063562 | mantic/linux-azure: 6.5.0-1021.22 -proposed tracker | Kernel SRU Workflow new-review | Medium | Fix Released | ||
| 2063562 | mantic/linux-azure: 6.5.0-1021.22 -proposed tracker | Kernel SRU Workflow prepare-package | Medium | Fix Released | ||
| 2063562 | mantic/linux-azure: 6.5.0-1021.22 -proposed tracker | Kernel SRU Workflow prepare-package-generate | Medium | Fix Released | ||
| 2063562 | mantic/linux-azure: 6.5.0-1021.22 -proposed tracker | Kernel SRU Workflow prepare-package-lrg | Medium | Fix Released | ||
| 2063562 | mantic/linux-azure: 6.5.0-1021.22 -proposed tracker | Kernel SRU Workflow prepare-package-lrm | Medium | Fix Released | ||
| 2063562 | mantic/linux-azure: 6.5.0-1021.22 -proposed tracker | Kernel SRU Workflow prepare-package-lrs | Medium | Fix Released | ||
| 2063562 | mantic/linux-azure: 6.5.0-1021.22 -proposed tracker | Kernel SRU Workflow prepare-package-meta | Medium | Fix Released | ||
| 2063562 | mantic/linux-azure: 6.5.0-1021.22 -proposed tracker | Kernel SRU Workflow prepare-package-signed | Medium | Fix Released | ||
| 2063562 | mantic/linux-azure: 6.5.0-1021.22 -proposed tracker | Kernel SRU Workflow promote-signing-to-proposed | Medium | Invalid | ||
| 2063562 | mantic/linux-azure: 6.5.0-1021.22 -proposed tracker | Kernel SRU Workflow promote-to-proposed | Medium | Fix Released | ||
| 2063562 | mantic/linux-azure: 6.5.0-1021.22 -proposed tracker | Kernel SRU Workflow promote-to-security | Medium | Fix Released | ||
| 2063562 | mantic/linux-azure: 6.5.0-1021.22 -proposed tracker | Kernel SRU Workflow promote-to-updates | Medium | Fix Released | ||
| 2063562 | mantic/linux-azure: 6.5.0-1021.22 -proposed tracker | Kernel SRU Workflow regression-testing | Medium | Fix Released | ||
| 2063562 | mantic/linux-azure: 6.5.0-1021.22 -proposed tracker | Kernel SRU Workflow security-signoff | Medium | Fix Released | ||
| 2063562 | mantic/linux-azure: 6.5.0-1021.22 -proposed tracker | Kernel SRU Workflow sru-review | Medium | Fix Released | ||
| 2063562 | mantic/linux-azure: 6.5.0-1021.22 -proposed tracker | Kernel SRU Workflow stakeholder-signoff | Medium | Fix Released | ||
| 2063562 | mantic/linux-azure: 6.5.0-1021.22 -proposed tracker | Kernel SRU Workflow verification-testing | Medium | Fix Released | ||
| 2063562 | mantic/linux-azure: 6.5.0-1021.22 -proposed tracker | linux-azure (Ubuntu Mantic) | Medium | Fix Released | ||
| 2063562 | mantic/linux-azure: 6.5.0-1021.22 -proposed tracker | canonical-signing-jobs task00 | Medium | Fix Released | ||
See the 
CVE page on Mitre.org
for more details.
