CVE-2024-26582

Updated: 2026-02-27 02:22:47.704011

Description:

In the Linux kernel, the following vulnerability has been resolved: net: tls: fix use-after-free with partial reads and async decrypt tls_decrypt_sg doesn't take a reference on the pages from clear_skb, so the put_page() in tls_decrypt_done releases them, and we trigger a use-after-free in process_rx_list when we try to read from the partially-read skb.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0.0
CVSS Version 3.x HIGH 7.8

Status

OS name Project name Version Score Severity Status Errata Last updated

Statement
AlmaLinux 9.2 ESU kernel 5.14.0 7.8 HIGH Released CLSA-2025:1743193221 2024-06-24 11:25:00
CentOS 6 ELS kernel 2.6.32 7.8 HIGH Not Vulnerable 2024-06-12 06:02:28 Not affected: CVE-2024-26582 targets the kTLS receive path added by commit fd31f3996af2 (“tls: rx:...
CentOS 7 ELS kernel 3.10.0 7.8 HIGH Not Vulnerable 2024-06-12 06:02:28 Not affected: CVE-2024-26582 targets the net/tls receive path introduced by upstream commit fd31f399...
CentOS 8.4 ELS kernel 4.18.0 7.8 HIGH Not Vulnerable 2024-05-02 10:00:53 Not affected: the use-after-free in CVE-2024-26582 occurs in the kTLS RX refactor that decrypts into...
CentOS 8.5 ELS kernel 4.18.0 7.8 HIGH Not Vulnerable 2024-04-29 05:39:30 Not affected: the use-after-free in CVE-2024-26582 occurs in the kTLS RX refactor that decrypts into...
CentOS Stream 8 ELS kernel 4.18.0 7.8 HIGH Not Vulnerable 2025-10-23 18:38:55 Not affected: the use-after-free in CVE-2024-26582 occurs in the kTLS RX refactor that decrypts into...
CloudLinux 6 ELS kernel 2.6.32 7.8 HIGH Not Vulnerable 2024-06-12 06:02:28
Oracle Linux 6 ELS kernel 2.6.32 7.8 HIGH Not Vulnerable 2024-06-12 06:02:28 Not affected: CVE-2024-26582 targets the kTLS receive path added by commit fd31f3996af2 (“tls: rx:...