{"id":"CVE-2024-26872","summary":"RDMA/srpt: Do not register event handler until srpt device is fully setup","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/srpt: Do not register event handler until srpt device is fully setup\n\nUpon rare occasions, KASAN reports a use-after-free Write\nin srpt_refresh_port().\n\nThis seems to be because an event handler is registered before the\nsrpt device is fully setup and a race condition upon error may leave a\npartially setup event handler in place.\n\nInstead, only register the event handler after srpt device initialization\nis complete.","modified":"2026-04-02T10:06:16.755538Z","published":"2024-04-17T10:27:32.025Z","related":["ALSA-2024:3618","ALSA-2024:3627","SUSE-SU-2024:1644-1","SUSE-SU-2024:1659-1","SUSE-SU-2024:1663-1","SUSE-SU-2025:02334-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/26xxx/CVE-2024-26872.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/6413e78086caf7bf15639923740da0d91fdfd090"},{"type":"WEB","url":"https://git.kernel.org/stable/c/7104a00fa37ae898a827381f1161fa3286c8b346"},{"type":"WEB","url":"https://git.kernel.org/stable/c/85570b91e4820a0db9d9432098778cafafa7d217"},{"type":"WEB","url":"https://git.kernel.org/stable/c/bdd895e0190c464f54f84579e7535d80276f0fc5"},{"type":"WEB","url":"https://git.kernel.org/stable/c/c21a8870c98611e8f892511825c9607f1e2cd456"},{"type":"WEB","url":"https://git.kernel.org/stable/c/e362d007294955a4fb929e1c8978154a64efdcb6"},{"type":"WEB","url":"https://git.kernel.org/stable/c/ec77fa12da41260c6bf9e060b89234b980c5130f"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/26xxx/CVE-2024-26872.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-26872"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"a42d985bd5b234da8b61347a78dc3057bf7bb94d"},{"fixed":"bdd895e0190c464f54f84579e7535d80276f0fc5"},{"fixed":"6413e78086caf7bf15639923740da0d91fdfd090"},{"fixed":"e362d007294955a4fb929e1c8978154a64efdcb6"},{"fixed":"85570b91e4820a0db9d9432098778cafafa7d217"},{"fixed":"7104a00fa37ae898a827381f1161fa3286c8b346"},{"fixed":"ec77fa12da41260c6bf9e060b89234b980c5130f"},{"fixed":"c21a8870c98611e8f892511825c9607f1e2cd456"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-26872.json"}}],"schema_version":"1.7.5"}