vulnerability

Red Hat: CVE-2024-26585: kernel: tls: race between tx work scheduling and socket close (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:M/Au:S/C:C/I:C/A:C)	Feb 21, 2024	Jul 3, 2024	Mar 27, 2026

Severity

CVSS

(AV:L/AC:M/Au:S/C:C/I:C/A:C)

Published

Feb 21, 2024

Added

Jul 3, 2024

Modified

Mar 27, 2026

Description

In the Linux kernel, the following vulnerability has been resolved:

tls: fix race between tx work scheduling and socket close

Similarly to previous commit, the submitting thread (recvmsg/sendmsg)
may exit as soon as the async crypto handler calls complete().
Reorder scheduling the work before calling complete().
This seems more logical in the first place, as it's
the inverse order of what the submitting thread will do.

Solutions

redhat-upgrade-kernelredhat-upgrade-kernel-rt

References

CWE-362
EUVD-EUVD-2024-23847
NVD-CVE-2024-26585
REDHAT-RHSA-2024:2394
REDHAT-RHSA-2024:4211
REDHAT-RHSA-2024:4352
REDHAT-RHSA-2024:4533
REDHAT-RHSA-2024:4554
REDHAT-RHSA-2024:5255
https://euvd.enisa.europa.eu/vulnerability/EUVD-2024-23847

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today