HomeDefault status
unaffected
3b3009ea8abb713b022d94fba95ec270cf6e7eae (git) before cd8cf2be3717137554744233fda051ffc09d1d44
affected
3b3009ea8abb713b022d94fba95ec270cf6e7eae (git) before 7b82a1d6ae869533d8bdb0282a3a78faed8e63dd
affected
3b3009ea8abb713b022d94fba95ec270cf6e7eae (git) before b225325be7b247c7268e65eea6090db1fc786d1f
affected
3b3009ea8abb713b022d94fba95ec270cf6e7eae (git) before 6af2a01d65f89e73c1cbb9267f8880d83a88cee4
affected
Default status
affected
6.4
affected
Any version before 6.4
unaffected
6.6.120 (semver)
unaffected
6.12.64 (semver)
unaffected
6.18.3 (semver)
unaffected
6.19 (original_commit_for_fix)
unaffected
Description
In the Linux kernel, the following vulnerability has been resolved: net/handshake: restore destructor on submit failure handshake_req_submit() replaces sk->sk_destruct but never restores it when submission fails before the request is hashed. handshake_sk_destruct() then returns early and the original destructor never runs, leaking the socket. Restore sk_destruct on the error path.
Product status
3b3009ea8abb713b022d94fba95ec270cf6e7eae (git) before cd8cf2be3717137554744233fda051ffc09d1d44
3b3009ea8abb713b022d94fba95ec270cf6e7eae (git) before 7b82a1d6ae869533d8bdb0282a3a78faed8e63dd
3b3009ea8abb713b022d94fba95ec270cf6e7eae (git) before b225325be7b247c7268e65eea6090db1fc786d1f
3b3009ea8abb713b022d94fba95ec270cf6e7eae (git) before 6af2a01d65f89e73c1cbb9267f8880d83a88cee4
6.4
Any version before 6.4
6.6.120 (semver)
6.12.64 (semver)
6.18.3 (semver)
6.19 (original_commit_for_fix)
References
git.kernel.org/...c/cd8cf2be3717137554744233fda051ffc09d1d44
git.kernel.org/...c/7b82a1d6ae869533d8bdb0282a3a78faed8e63dd
git.kernel.org/...c/b225325be7b247c7268e65eea6090db1fc786d1f
git.kernel.org/...c/6af2a01d65f89e73c1cbb9267f8880d83a88cee4