PT-2024-21496 · Linux+6 · Linux Kernel+6

Davide Caratti

Published

2024-04-03

Updated

2026-05-26

CVE-2024-26740

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue arises when reversing the flow of traffic with the redirect (egress -> ingress), potentially reaching the same socket that generated the packet while still holding its socket lock. This can lead to a deadlock, specifically a tcp v4 rcv -> tcp v4 rcv deadlock reported by lockdep. The solution involves putting the packet in the Rx backlog rather than running the Rx path inline for all egress -> ingress reversals.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Improper Locking

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-667

Related Identifiers

ALSA-2024:5101

ALSA-2024:5102

ALSA-2025_12746

ALSA-2025_12752

ALSA-2025_12753

ALSA-2025_16880

AZL-58758

CESA-2024_5101

CESA-2024_5102

CVE-2024-26740

ECHO-8766-0365-35FC

INFSA-2024_5101

INFSA-2024_5102

INFSA-2024_9315

OESA-2024-1617

OESA-2024-1618

OESA-2024-1622

OESA-2024-1647

OESA-2024-1648

OESA-2024-1649

RHSA-2024:5101

RHSA-2024:5102

RHSA-2024:9315

RHSA-2024_5101

RHSA-2024_5102

RHSA-2024_9315

RHSA-2025:2270

RLSA-2024:5101

RLSA-2024:5102

RXSA-2024:5101

SUSE-SU-2024:2135-1

SUSE-SU-2024:2203-1

SUSE-SU-2024:2973-1

SUSE-SU-2025:01983-1

SUSE-SU-2025:20008-1

SUSE-SU-2025_01983-1

Affected Products

Almalinux

Centos

Debian

Linux Kernel

Red Hat

Rocky Linux

Suse

PT-2024-21496 · Linux+6 · Linux Kernel+6

CVE-2024-26740

Weakness Enumeration

Related Identifiers

Affected Products

References · 2901