Unrated severityNVD Advisory· Published Feb 21, 2024· Updated Nov 4, 2025
net: tls: fix use-after-free with partial reads and async decrypt
CVE-2024-26582
Description
In the Linux kernel, the following vulnerability has been resolved:
net: tls: fix use-after-free with partial reads and async decrypt
tls_decrypt_sg doesn't take a reference on the pages from clear_skb, so the put_page() in tls_decrypt_done releases them, and we trigger a use-after-free in process_rx_list when we try to read from the partially-read skb.
Affected products
69- osv-coords68 versionspkg:deb/ubuntu/linux-aws@6.5.0-1021.21?arch=source&distro=manticpkg:deb/ubuntu/linux-laptop@6.5.0-1017.20?arch=source&distro=manticpkg:deb/ubuntu/linux-oem-6.5pkg:deb/ubuntu/linux-oracle@6.5.0-1024.24?arch=source&distro=manticpkg:rpm/almalinux/bpftoolpkg:rpm/almalinux/kernelpkg:rpm/almalinux/kernel-64kpkg:rpm/almalinux/kernel-64k-corepkg:rpm/almalinux/kernel-64k-debugpkg:rpm/almalinux/kernel-64k-debug-corepkg:rpm/almalinux/kernel-64k-debug-develpkg:rpm/almalinux/kernel-64k-debug-devel-matchedpkg:rpm/almalinux/kernel-64k-debug-modulespkg:rpm/almalinux/kernel-64k-debug-modules-corepkg:rpm/almalinux/kernel-64k-debug-modules-extrapkg:rpm/almalinux/kernel-64k-develpkg:rpm/almalinux/kernel-64k-devel-matchedpkg:rpm/almalinux/kernel-64k-modulespkg:rpm/almalinux/kernel-64k-modules-corepkg:rpm/almalinux/kernel-64k-modules-extrapkg:rpm/almalinux/kernel-abi-stablelistspkg:rpm/almalinux/kernel-corepkg:rpm/almalinux/kernel-cross-headerspkg:rpm/almalinux/kernel-debugpkg:rpm/almalinux/kernel-debug-corepkg:rpm/almalinux/kernel-debug-develpkg:rpm/almalinux/kernel-debug-devel-matchedpkg:rpm/almalinux/kernel-debug-modulespkg:rpm/almalinux/kernel-debug-modules-corepkg:rpm/almalinux/kernel-debug-modules-extrapkg:rpm/almalinux/kernel-debug-uki-virtpkg:rpm/almalinux/kernel-develpkg:rpm/almalinux/kernel-devel-matchedpkg:rpm/almalinux/kernel-docpkg:rpm/almalinux/kernel-headerspkg:rpm/almalinux/kernel-modulespkg:rpm/almalinux/kernel-modules-corepkg:rpm/almalinux/kernel-modules-extrapkg:rpm/almalinux/kernel-rtpkg:rpm/almalinux/kernel-rt-corepkg:rpm/almalinux/kernel-rt-debugpkg:rpm/almalinux/kernel-rt-debug-corepkg:rpm/almalinux/kernel-rt-debug-develpkg:rpm/almalinux/kernel-rt-debug-modulespkg:rpm/almalinux/kernel-rt-debug-modules-corepkg:rpm/almalinux/kernel-rt-debug-modules-extrapkg:rpm/almalinux/kernel-rt-develpkg:rpm/almalinux/kernel-rt-modulespkg:rpm/almalinux/kernel-rt-modules-corepkg:rpm/almalinux/kernel-rt-modules-extrapkg:rpm/almalinux/kernel-toolspkg:rpm/almalinux/kernel-tools-libspkg:rpm/almalinux/kernel-tools-libs-develpkg:rpm/almalinux/kernel-uki-virtpkg:rpm/almalinux/kernel-zfcpdumppkg:rpm/almalinux/kernel-zfcpdump-corepkg:rpm/almalinux/kernel-zfcpdump-develpkg:rpm/almalinux/kernel-zfcpdump-devel-matchedpkg:rpm/almalinux/kernel-zfcpdump-modulespkg:rpm/almalinux/kernel-zfcpdump-modules-corepkg:rpm/almalinux/kernel-zfcpdump-modules-extrapkg:rpm/almalinux/libperfpkg:rpm/almalinux/perfpkg:rpm/almalinux/python3-perfpkg:rpm/almalinux/rtlapkg:rpm/almalinux/rvpkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Micro%206.0pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Micro%206.0
< 6.5.0-1021.21+ 67 more
- (no CPE)range: < 6.5.0-1021.21
- (no CPE)range: < 6.5.0-1017.20
- (no CPE)range: < 6.5.0-1022.23
- (no CPE)range: < 6.5.0-1024.24
- (no CPE)range: < 7.3.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 6.4.0-9.1
- (no CPE)range: < 6.4.0-9.1
- Linux/Linuxv5Range: 6.0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4News mentions
0No linked articles in our index yet.