CVE-2024-56645

Summary

In the Linux kernel, the following vulnerability has been resolved:

can: j1939: j1939_session_new(): fix skb reference counting

Since j1939_session_skb_queue() does an extra skb_get() for each new skb, do the same for the initial one in j1939_session_new() to avoid refcount underflow.

[mkl: clean up commit message]

Affected Software

VendorProductVersion RangeStatus
LinuxLinux9d71dd0c70099914fcd063135da3c580865e924c < 224e606a8d8e8c7db94036272c47a37455667313affected
LinuxLinux9d71dd0c70099914fcd063135da3c580865e924c < b3282c2bebeeb82ceec492ee4972f51ee7a4a132affected
LinuxLinux9d71dd0c70099914fcd063135da3c580865e924c < 4199dd78a59896e091d3a7a05a77451aa7fd724daffected
LinuxLinux9d71dd0c70099914fcd063135da3c580865e924c < f117cba69cbbd496babb3defcdf440df4fd6fe14affected
LinuxLinux9d71dd0c70099914fcd063135da3c580865e924c < 426d94815e12b6bdb9a75af294fbbafb9301601daffected
LinuxLinux9d71dd0c70099914fcd063135da3c580865e924c < 68fceb143b635cdc59fed3896d5910aff38f345eaffected
LinuxLinux9d71dd0c70099914fcd063135da3c580865e924c < a8c695005bfe6569acd73d777ca298ddddd66105affected
LinuxLinux5.4affected
LinuxLinux0 < 5.4unaffected
LinuxLinux5.4.287 <= 5.4.*unaffected
LinuxLinux5.10.231 <= 5.10.*unaffected
LinuxLinux5.15.174 <= 5.15.*unaffected
LinuxLinux6.1.120 <= 6.1.*unaffected
LinuxLinux6.6.66 <= 6.6.*unaffected
LinuxLinux6.12.5 <= 6.12.*unaffected
LinuxLinux6.13 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References