VYPR
High severity7.8NVD Advisory· Published Dec 27, 2024· Updated Jun 17, 2026

CVE-2024-56601

CVE-2024-56601

Description

In the Linux kernel, the following vulnerability has been resolved:

net: inet: do not leave a dangling sk pointer in inet_create()

sock_init_data() attaches the allocated sk object to the provided sock object. If inet_create() fails later, the sk object is freed, but the sock object retains the dangling pointer, which may create use-after-free later.

Clear the sk pointer in the sock object on error.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

258

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.