{"id":"CVE-2024-46855","summary":"netfilter: nft_socket: fix sk refcount leaks","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_socket: fix sk refcount leaks\n\nWe must put 'sk' reference before returning.","modified":"2026-04-02T12:19:47.526565Z","published":"2024-09-27T12:42:47.281Z","related":["SUSE-SU-2024:3587-1","SUSE-SU-2024:3984-1","SUSE-SU-2024:3985-1","SUSE-SU-2024:3986-1","SUSE-SU-2024:4318-1","SUSE-SU-2024:4364-1","SUSE-SU-2024:4387-1","SUSE-SU-2025:20163-1","SUSE-SU-2025:20164-1","SUSE-SU-2025:20246-1","SUSE-SU-2025:20247-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/46xxx/CVE-2024-46855.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/076d281e90aaf4192799ecb9a1ed82321e133ecd"},{"type":"WEB","url":"https://git.kernel.org/stable/c/1f68e097e20d3c695281a9c6433acc37be47fe11"},{"type":"WEB","url":"https://git.kernel.org/stable/c/33c2258bf8cb17fba9e58b111d4c4f4cf43a4896"},{"type":"WEB","url":"https://git.kernel.org/stable/c/6572440f78b724c46070841a68254ebc534cde24"},{"type":"WEB","url":"https://git.kernel.org/stable/c/83e6fb59040e8964888afcaa5612cc1243736715"},{"type":"WEB","url":"https://git.kernel.org/stable/c/8b26ff7af8c32cb4148b3e147c52f9e4c695209c"},{"type":"WEB","url":"https://git.kernel.org/stable/c/ddc7c423c4a5386bf865474c694b48178efd311a"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/46xxx/CVE-2024-46855.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-46855"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"039b1f4f24ecc8493b6bb9d70b4b78750d1b35c2"},{"fixed":"076d281e90aaf4192799ecb9a1ed82321e133ecd"},{"fixed":"6572440f78b724c46070841a68254ebc534cde24"},{"fixed":"ddc7c423c4a5386bf865474c694b48178efd311a"},{"fixed":"33c2258bf8cb17fba9e58b111d4c4f4cf43a4896"},{"fixed":"83e6fb59040e8964888afcaa5612cc1243736715"},{"fixed":"1f68e097e20d3c695281a9c6433acc37be47fe11"},{"fixed":"8b26ff7af8c32cb4148b3e147c52f9e4c695209c"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"0"},{"last_affected":"6934809432d23e9e0081f82d882b8fc765deeb4a"},{"last_affected":"f63432cd1bb224f61216e4a4726ff29ddffbed98"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-46855.json"}}],"schema_version":"1.7.5"}