{"id":"CVE-2024-26677","summary":"rxrpc: Fix delayed ACKs to not set the reference serial number","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nrxrpc: Fix delayed ACKs to not set the reference serial number\n\nFix the construction of delayed ACKs to not set the reference serial number\nas they can't be used as an RTT reference.","modified":"2026-03-20T12:35:07.970948Z","published":"2024-04-02T07:01:41.569Z","related":["SUSE-SU-2024:3189-1","SUSE-SU-2024:3190-1","SUSE-SU-2024:3194-1","SUSE-SU-2024:3195-1","SUSE-SU-2024:3209-1","SUSE-SU-2024:3251-1","SUSE-SU-2024:3252-1","SUSE-SU-2024:3383-1","SUSE-SU-2024:3483-1","SUSE-SU-2025:20044-1","SUSE-SU-2025:20047-1"],"database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/26xxx/CVE-2024-26677.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/200cb50b9e154434470c8969d32474d38475acc2"},{"type":"WEB","url":"https://git.kernel.org/stable/c/63719f490e6a89896e9a463d2b45e8203eab23ae"},{"type":"WEB","url":"https://git.kernel.org/stable/c/e7870cf13d20f56bfc19f9c3e89707c69cf104ef"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/26xxx/CVE-2024-26677.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-26677"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"17926a79320afa9b95df6b977b40cca6d8713cea"},{"fixed":"200cb50b9e154434470c8969d32474d38475acc2"},{"fixed":"63719f490e6a89896e9a463d2b45e8203eab23ae"},{"fixed":"e7870cf13d20f56bfc19f9c3e89707c69cf104ef"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-26677.json"}}],"schema_version":"1.7.5"}