{"vulnerability": "CVE-2024-26584", "sightings": [{"uuid": "300cfc2a-f6d9-45f0-a892-1bf505f244cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-26584", "type": "seen", "source": "https://u1f383.github.io/linux/2025/01/21/linux-kernel-tls-part-2.html", "content": "", "creation_timestamp": "2025-01-20T23:00:00.000000Z"}, {"uuid": "4bd953c6-4969-494c-9d32-42c45b794d9c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-26584", "type": "seen", "source": "https://t.me/arpsyndicate/4012", "content": "#ExploitObserverAlert\n\nCVE-2024-26584\n\nDESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-26584. In the Linux kernel, the following vulnerability has been resolved:  net: tls: handle backlogging of crypto requests  Since we're setting the CRYPTO_TFM_REQ_MAY_BACKLOG flag on our requests to the crypto API, crypto_aead_{encrypt,decrypt} can return  -EBUSY instead of -EINPROGRESS in valid situations. For example, when the cryptd queue for AESNI is full (easy to trigger with an artificially low cryptd.cryptd_max_cpu_qlen), requests will be enqueued to the backlog but still processed. In that case, the async callback will also be called twice: first with err == -EINPROGRESS, which it seems we can just ignore, then with err == 0.  Compared to Sabrina's original patch this version uses the new tls_*crypt_async_wait() helpers and converts the EBUSY to EINPROGRESS to avoid having to modify all the error handling paths. The handling is identical.", "creation_timestamp": "2024-02-22T19:21:06.000000Z"}, {"uuid": "819970ce-1088-4459-9636-e72cd8020f0f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-26584", "type": "seen", "source": "https://u1f383.github.io/linux/2025/01/21/linux-kernel-tls-part-2.html", "content": "", "creation_timestamp": "2025-01-20T23:00:00.000000Z"}, {"uuid": "961cbc54-2d55-4829-a2a2-0be78cf33e47", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-26584", "type": "seen", "source": "https://u1f383.github.io/linux/2025/01/21/linux-kernel-tls-part-2.html", "content": "", "creation_timestamp": "2025-01-20T23:00:00.000000Z"}, {"uuid": "0d1c3c36-ea03-4742-b2d5-a389d5f5d5e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2024-26584", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8", "content": "", "creation_timestamp": "2025-12-03T14:14:49.267740Z"}, {"uuid": "d6a26c2e-24ef-4201-a4cd-d72f76f6a2e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-26584", "type": "seen", "source": "https://u1f383.github.io/linux/2025/01/21/linux-kernel-tls-part-2.html", "content": "", "creation_timestamp": "2025-01-20T23:00:00.000000Z"}, {"uuid": "1d38d092-8de6-438f-a727-b9298a408183", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-26584", "type": "seen", "source": "https://u1f383.github.io/linux/2025/01/21/linux-kernel-tls-part-2.html", "content": "", "creation_timestamp": "2025-01-20T23:00:00.000000Z"}, {"uuid": "b61a32c4-8e9e-4854-af6e-01f00d40dfbb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2024-26584", "type": "seen", "source": "https://www.hkcert.org/security-bulletin/suse-linux-kernel-multiple-vulnerabilities_20260506", "content": "", "creation_timestamp": "2026-05-05T18:00:00.000000Z"}, {"uuid": "487b4adc-2a38-4953-8567-237145cb8500", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-26584", "type": "seen", "source": "https://t.me/ctinow/189736", "content": "https://ift.tt/4gDaCPl\nCVE-2024-26584", "creation_timestamp": "2024-02-21T16:31:24.000000Z"}, {"uuid": "48ca846f-fe9f-4db3-9269-40161faf0ad4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-26584", "type": "seen", "source": "https://t.me/ctinow/189743", "content": "https://ift.tt/4gDaCPl\nCVE-2024-26584", "creation_timestamp": "2024-02-21T16:31:31.000000Z"}, {"uuid": "10fdf2e3-cd50-4b96-9b54-ca5c8a13b1a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-26584", "type": "seen", "source": "https://t.me/ctinow/190855", "content": "https://ift.tt/rVb1ZXQ\nCVE-2024-26584", "creation_timestamp": "2024-02-22T16:11:23.000000Z"}]}