{"id":"CVE-2024-56601","summary":"net: inet: do not leave a dangling sk pointer in inet_create()","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet: inet: do not leave a dangling sk pointer in inet_create()\n\nsock_init_data() attaches the allocated sk object to the provided sock\nobject. If inet_create() fails later, the sk object is freed, but the\nsock object retains the dangling pointer, which may create use-after-free\nlater.\n\nClear the sk pointer in the sock object on error.","modified":"2026-04-16T04:31:28.825483948Z","published":"2024-12-27T14:51:07.358Z","related":["SUSE-SU-2025:02069-1","SUSE-SU-2025:02070-1","SUSE-SU-2025:02071-1","SUSE-SU-2025:02072-1","SUSE-SU-2025:02073-1","SUSE-SU-2025:02075-1","SUSE-SU-2025:02076-1","SUSE-SU-2025:02077-1","SUSE-SU-2025:02087-1","SUSE-SU-2025:02095-1","SUSE-SU-2025:02096-1","SUSE-SU-2025:02101-1","SUSE-SU-2025:02106-1","SUSE-SU-2025:02107-1","SUSE-SU-2025:02108-1","SUSE-SU-2025:02110-1","SUSE-SU-2025:02111-1","SUSE-SU-2025:02112-1","SUSE-SU-2025:02113-1","SUSE-SU-2025:02116-1","SUSE-SU-2025:02117-1","SUSE-SU-2025:02124-1","SUSE-SU-2025:02125-1","SUSE-SU-2025:02126-1","SUSE-SU-2025:02127-1","SUSE-SU-2025:02128-1","SUSE-SU-2025:02131-1","SUSE-SU-2025:02132-1","SUSE-SU-2025:02134-1","SUSE-SU-2025:02136-1","SUSE-SU-2025:02138-1","SUSE-SU-2025:02139-1","SUSE-SU-2025:02140-1","SUSE-SU-2025:02142-1","SUSE-SU-2025:02144-1","SUSE-SU-2025:02145-1","SUSE-SU-2025:02154-1","SUSE-SU-2025:02155-1","SUSE-SU-2025:02156-1","SUSE-SU-2025:02157-1","SUSE-SU-2025:02161-1","SUSE-SU-2025:02162-1","SUSE-SU-2025:02171-1","SUSE-SU-2025:0428-1","SUSE-SU-2025:0499-1","SUSE-SU-2025:0555-1","SUSE-SU-2025:0556-1","SUSE-SU-2025:0557-1","SUSE-SU-2025:0564-1","SUSE-SU-2025:0565-1","SUSE-SU-2025:0576-1","SUSE-SU-2025:0577-1","SUSE-SU-2025:0577-2","SUSE-SU-2025:0603-1","SUSE-SU-2025:0771-1","SUSE-SU-2025:0867-1","SUSE-SU-2025:20165-1","SUSE-SU-2025:20166-1","SUSE-SU-2025:20248-1","SUSE-SU-2025:20249-1","SUSE-SU-2025:20431-1","SUSE-SU-2025:20434-1","SUSE-SU-2025:20435-1","SUSE-SU-2025:20436-1","SUSE-SU-2025:20437-1","SUSE-SU-2025:20438-1","SUSE-SU-2025:20448-1","SUSE-SU-2025:20449-1","SUSE-SU-2025:20450-1","SUSE-SU-2025:20451-1","SUSE-SU-2025:4123-1","USN-7379-2","USN-7380-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/56xxx/CVE-2024-56601.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/25447c6aaa7235f155292b0c58a067347e8ae891"},{"type":"WEB","url":"https://git.kernel.org/stable/c/2bc34d8c8898ae9fddf4612501aabb22d76c2b2c"},{"type":"WEB","url":"https://git.kernel.org/stable/c/3e8258070b0f2aba66b3ef18883de229674fb288"},{"type":"WEB","url":"https://git.kernel.org/stable/c/691d6d816f93b2a1008c14178399061466e674ef"},{"type":"WEB","url":"https://git.kernel.org/stable/c/9365fa510c6f82e3aa550a09d0c5c6b44dbc78ff"},{"type":"WEB","url":"https://git.kernel.org/stable/c/b4513cfd3a10c03c660d5d3d26c2e322efbfdd9b"},{"type":"WEB","url":"https://git.kernel.org/stable/c/f8a3f255f7509a209292871715cda03779640c8d"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/03/msg00001.html"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/56xxx/CVE-2024-56601.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-56601"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"1da177e4c3f41524e886b7f1b8a0c1fc7321cac2"},{"fixed":"f8a3f255f7509a209292871715cda03779640c8d"},{"fixed":"2bc34d8c8898ae9fddf4612501aabb22d76c2b2c"},{"fixed":"3e8258070b0f2aba66b3ef18883de229674fb288"},{"fixed":"b4513cfd3a10c03c660d5d3d26c2e322efbfdd9b"},{"fixed":"25447c6aaa7235f155292b0c58a067347e8ae891"},{"fixed":"691d6d816f93b2a1008c14178399061466e674ef"},{"fixed":"9365fa510c6f82e3aa550a09d0c5c6b44dbc78ff"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-56601.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}