VYPR
← All advisories
Medium severity5.5NVD Advisory· Published Dec 27, 2024· Updated Apr 18, 2026

CVE-2024-56584

CVE-2024-56584

Description

In the Linux kernel, the following vulnerability has been resolved:

io_uring/tctx: work around xa_store() allocation error issue

syzbot triggered the following WARN_ON:

WARNING: CPU: 0 PID: 16 at io_uring/tctx.c:51 __io_uring_free+0xfa/0x140 io_uring/tctx.c:51

which is the

WARN_ON_ONCE(!xa_empty(&tctx->xa));

sanity check in __io_uring_free() when a io_uring_task is going through its final put. The syzbot test case includes injecting memory allocation failures, and it very much looks like xa_store() can fail one of its memory allocations and end up with ->head being non-NULL even though no entries exist in the xarray.

Until this issue gets sorted out, work around it by attempting to iterate entries in our xarray, and WARN_ON_ONCE() if one is found.

Affected products

1
  • Linux/Kernel
    cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
    Range: >=5.1,<6.1.120

Patches

4
94ad56f61b87
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.gitvia osv
42882b583095
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.gitvia osv
d5b2ddf1f90c
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.gitvia osv
7eb75ce75271
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.gitvia osv

Vulnerability mechanics

Generated by null/stub on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

1

News mentions

0

No linked articles in our index yet.