CVE-2024-26780

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.8.0-rc3-syzkaller-00136-g1f719a2f3fa6

Description The vulnerability is related to the af unix component of the Linux kernel, which is responsible for handling Unix domain sockets. The issue arises when the garbage collector (GC) is purging out-of-band sockets (oob skb). A task can become hung while the GC is looping infinitely in the list for each entry safe() function for OOB skb. This occurs because the list for each entry safe() function is not actually safe in this case, as a single socket buffer (skb) can have references for multiple sockets. If such a skb is freed in the list for each entry safe(), the current and next sockets could be unlinked in a single iteration, causing the function to never stop.

Recommendations To resolve the issue, it is recommended to update the Linux kernel to a version that includes the fix for the af unix component, specifically the patch that addresses the issue with the list for each entry safe() function. As a temporary workaround, consider disabling the unix gc function until a patch is available. However, this may have unintended consequences and should be carefully evaluated before implementation.

Note: The provided information does not specify the exact version that includes the fix, so it is recommended to update to the latest available version of the Linux kernel.