{"id":"CVE-2024-50264","summary":"vsock/virtio: Initialization of the dangling pointer occurring in vsk-\u003etrans","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nvsock/virtio: Initialization of the dangling pointer occurring in vsk-\u003etrans\n\nDuring loopback communication, a dangling pointer can be created in\nvsk-\u003etrans, potentially leading to a Use-After-Free condition.  This\nissue is resolved by initializing vsk-\u003etrans to NULL.","aliases":["A-378870958","ASB-A-378870958"],"modified":"2026-03-20T12:39:39.546511Z","published":"2024-11-19T01:29:59.511Z","related":["ALSA-2024:10943","ALSA-2024:10944","ALSA-2025:2627","SUSE-SU-2024:4313-1","SUSE-SU-2024:4314-1","SUSE-SU-2024:4315-1","SUSE-SU-2024:4316-1","SUSE-SU-2024:4317-1","SUSE-SU-2024:4318-1","SUSE-SU-2024:4345-1","SUSE-SU-2024:4346-1","SUSE-SU-2024:4364-1","SUSE-SU-2024:4367-1","SUSE-SU-2024:4376-1","SUSE-SU-2024:4387-1","SUSE-SU-2024:4388-1","SUSE-SU-2025:0035-1","SUSE-SU-2025:0083-1","SUSE-SU-2025:0084-1","SUSE-SU-2025:0085-1","SUSE-SU-2025:0089-1","SUSE-SU-2025:0090-1","SUSE-SU-2025:0091-1","SUSE-SU-2025:0094-1","SUSE-SU-2025:0097-1","SUSE-SU-2025:0098-1","SUSE-SU-2025:0100-1","SUSE-SU-2025:0101-1","SUSE-SU-2025:0103-1","SUSE-SU-2025:0105-1","SUSE-SU-2025:0106-1","SUSE-SU-2025:0107-1","SUSE-SU-2025:0108-1","SUSE-SU-2025:0109-1","SUSE-SU-2025:0110-1","SUSE-SU-2025:0111-1","SUSE-SU-2025:0112-1","SUSE-SU-2025:0114-1","SUSE-SU-2025:0115-1","SUSE-SU-2025:0123-1","SUSE-SU-2025:0124-1","SUSE-SU-2025:0131-1","SUSE-SU-2025:0132-1","SUSE-SU-2025:0136-1","SUSE-SU-2025:0137-1","SUSE-SU-2025:0138-1","SUSE-SU-2025:0146-1","SUSE-SU-2025:0150-1","SUSE-SU-2025:0158-1","SUSE-SU-2025:0164-1","SUSE-SU-2025:0168-1","SUSE-SU-2025:0172-1","SUSE-SU-2025:0173-1","SUSE-SU-2025:0177-1","SUSE-SU-2025:0179-1","SUSE-SU-2025:0180-1","SUSE-SU-2025:0181-1","SUSE-SU-2025:0184-1","SUSE-SU-2025:0185-1","SUSE-SU-2025:0187-1","SUSE-SU-2025:0188-1","SUSE-SU-2025:0238-1","SUSE-SU-2025:0239-1","SUSE-SU-2025:0240-1","SUSE-SU-2025:0243-1","SUSE-SU-2025:0244-1","SUSE-SU-2025:0245-1","SUSE-SU-2025:0246-1","SUSE-SU-2025:0248-1","SUSE-SU-2025:0249-1","SUSE-SU-2025:0251-1","SUSE-SU-2025:0252-1","SUSE-SU-2025:0253-1","SUSE-SU-2025:0254-1","SUSE-SU-2025:0255-1","SUSE-SU-2025:0260-1","SUSE-SU-2025:0261-1","SUSE-SU-2025:0262-1","SUSE-SU-2025:0264-1","SUSE-SU-2025:0265-1","SUSE-SU-2025:0266-1","SUSE-SU-2025:0269-1","SUSE-SU-2025:20163-1","SUSE-SU-2025:20164-1","SUSE-SU-2025:20246-1","SUSE-SU-2025:20247-1","SUSE-SU-2025:4123-1","USN-7169-1","USN-7169-2","USN-7169-3","USN-7169-4","USN-7169-5"],"database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/50xxx/CVE-2024-50264.json"},"references":[{"type":"WEB","url":"https://a13xp0p0v.github.io/2025/09/02/kernel-hack-drill-and-CVE-2024-50264.html"},{"type":"WEB","url":"https://git.kernel.org/stable/c/2a6a4e69f255b7aed17f93995691ab4f0d3c2203"},{"type":"WEB","url":"https://git.kernel.org/stable/c/44d29897eafd0e1196453d3003a4d5e0b968eeab"},{"type":"WEB","url":"https://git.kernel.org/stable/c/5f092a4271f6dccf88fe0d132475a17b69ef71df"},{"type":"WEB","url":"https://git.kernel.org/stable/c/5f970935d09934222fdef3d0e20c648ea7a963c1"},{"type":"WEB","url":"https://git.kernel.org/stable/c/6ca575374dd9a507cdd16dfa0e78c2e9e20bd05f"},{"type":"WEB","url":"https://git.kernel.org/stable/c/b110196fec44fe966952004bd426967c2a8fd358"},{"type":"WEB","url":"https://git.kernel.org/stable/c/eb1bdcb7dfc30b24495ee4c5533af0ed135cb5f1"},{"type":"WEB","url":"https://git.kernel.org/stable/c/fd8ae346692a56b4437d626c5460c7104980f389"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/50xxx/CVE-2024-50264.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-50264"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"06a8fc78367d070720af960dcecec917d3ae5f3b"},{"fixed":"5f092a4271f6dccf88fe0d132475a17b69ef71df"},{"fixed":"fd8ae346692a56b4437d626c5460c7104980f389"},{"fixed":"eb1bdcb7dfc30b24495ee4c5533af0ed135cb5f1"},{"fixed":"2a6a4e69f255b7aed17f93995691ab4f0d3c2203"},{"fixed":"44d29897eafd0e1196453d3003a4d5e0b968eeab"},{"fixed":"b110196fec44fe966952004bd426967c2a8fd358"},{"fixed":"5f970935d09934222fdef3d0e20c648ea7a963c1"},{"fixed":"6ca575374dd9a507cdd16dfa0e78c2e9e20bd05f"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-50264.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}