In the Linux kernel, the following vulnerability has been resolved: vsock: Orphan socket after transport release During socket release, sock_orphan() is called without considering that it sets sk->sk_wq to NULL. Later, if SO_LINGER is enabled, this leads to a null pointer dereferenced in virtio_transport_wait_close(). Orphan the socket only after transport release. Partially reverts the 'Fixes:' commit. KASAN: null-ptr-deref in range [0x0000000000000018-0x000000000000001f] lock_acquire+0x19e/0x500 _raw_spin_lock_irqsave+0x47/0x70 add_wait_queue+0x46/0x230 virtio_transport_release+0x4e7/0x7f0 __vsock_release+0xfd/0x490 vsock_release+0x90/0x120 __sock_release+0xa3/0x250 sock_close+0x14/0x20 __fput+0x35e/0xa90 __x64_sys_close+0x78/0xd0 do_syscall_64+0x93/0x1b0 entry_SYSCALL_64_after_hwframe+0x76/0x7e

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

[REJECTED CVE] A vulnerability was identified in the Linux kernel’s vsock module where the socket was orphaned before releasing the transport, leading to a NULL pointer dereference if SO_LINGER was enabled. This was caused by sock_orphan() nullifying sk->sk_wq, which was later accessed in virtio_transport_wait_close(). An attacker exploiting this flaw could trigger a kernel crash by closing a vsock socket with SO_LINGER set, leading to a denial of service on the host system.

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

Security update for the Linux Kernel (Live Patch 23 for SLE 15 SP5)

Security update for the Linux Kernel (Live Patch 26 for SLE 15 SP5)

Security update for the Linux Kernel (Live Patch 24 for SLE 15 SP5)

Security update for the Linux Kernel (Live Patch 19 for SLE 15 SP5)

Security update for the Linux Kernel (Live Patch 40 for SLE 15 SP4)

Security update for the Linux Kernel (Live Patch 33 for SLE 15 SP4)

Security update for the Linux Kernel (Live Patch 34 for SLE 15 SP4)

Security update for the Linux Kernel (Live Patch 36 for SLE 15 SP4)

Security update for the Linux Kernel (Live Patch 31 for SLE 15 SP4)

Security update for the Linux Kernel (Live Patch 32 for SLE 15 SP4)

Security update for the Linux Kernel

Security update for the Linux Kernel

Security update for the Linux Kernel

Security update for the Linux Kernel

Security update for the Linux Kernel

Security update for the Linux Kernel