[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2024-26689":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":20,"aliases":21,"duplicate_of":9,"upstream":22,"downstream":23,"duplicates":116,"related":117,"reserved_at":9,"published_at":129,"modified_at":130,"state":131,"summary":132,"references_raw":141,"kevs":174,"epss":175,"epss_history":178,"metrics":434,"affected":440},"CVE-2024-26689","In the Linux kernel, the following vulnerability has been resolved:\n\nceph: prevent use-after-free in encode_cap_msg()\n\nIn fs/ceph/caps.c, in encode_cap_msg(), \"use after free\" error was\ncaught by KASAN at this line - 'ceph_buffer_get(arg->xattr_buf);'. This\nimplies before the refcount could be increment here, it was freed.\n\nIn same file, in \"handle_cap_grant()\" refcount is decremented by this\nline - 'ceph_buffer_put(ci->i_xattrs.blob);'. It appears that a race\noccurred and resource was freed by the latter line before the former\nline could increment it.\n\nencode_cap_msg() is called by __send_cap() and __send_cap() is called by\nceph_check_caps() after calling __prep_cap(). __prep_cap() is where\narg->xattr_buf is assigned to ci->i_xattrs.blob. This is the spot where\nthe refcount must be increased to prevent \"use after free\" error.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-416","Use After Free","The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory \"belongs\" to the code that operates on the new pointer.","weakness","Stable","Variant","High",[],[],[],[],[24,26,28,30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64,66,68,70,72,74,76,78,80,82,84,86,88,90,92,94,96,98,100,102,104,106,108,110,112,114],{"_key":25},"SUSE-SU-2024:1659-1",{"_key":27},"SUSE-SU-2024:1642-1",{"_key":29},"SUSE-SU-2024:1643-1",{"_key":31},"SUSE-SU-2024:1645-1",{"_key":33},"SUSE-SU-2024:1646-1",{"_key":35},"SUSE-SU-2024:1650-1",{"_key":37},"SUSE-SU-2024:1870-1",{"_key":39},"SUSE-SU-2024:1490-1",{"_key":41},"SUSE-SU-2024:1641-1",{"_key":43},"SUSE-SU-2024:1647-1",{"_key":45},"SUSE-SU-2024:1663-1",{"_key":47},"DLA-3842-1",{"_key":49},"DSA-5681-1",{"_key":51},"USN-7986-1",{"_key":53},"DEBIAN-CVE-2024-26689",{"_key":55},"UBUNTU-CVE-2024-26689",{"_key":57},"USN-7495-1",{"_key":59},"USN-7495-2",{"_key":61},"USN-7495-3",{"_key":63},"USN-7496-1",{"_key":65},"USN-7496-2",{"_key":67},"USN-7496-3",{"_key":69},"USN-7496-4",{"_key":71},"USN-7496-5",{"_key":73},"USN-7506-1",{"_key":75},"USN-7506-2",{"_key":77},"USN-7506-3",{"_key":79},"USN-7506-4",{"_key":81},"LSN-0112-1",{"_key":83},"USN-6766-1",{"_key":85},"USN-6766-2",{"_key":87},"USN-6766-3",{"_key":89},"USN-6795-1",{"_key":91},"USN-6828-1",{"_key":93},"USN-6895-1",{"_key":95},"USN-6895-2",{"_key":97},"USN-6895-3",{"_key":99},"USN-6895-4",{"_key":101},"USN-6900-1",{"_key":103},"USN-7517-1",{"_key":105},"USN-7517-2",{"_key":107},"USN-7517-3",{"_key":109},"USN-7518-1",{"_key":111},"USN-7539-1",{"_key":113},"USN-7540-1",{"_key":115},"USN-7640-1",[],[118,119,120,121,122,123,124,125,126,127,128],{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},"2024-04-03T14:54:50.885Z","2026-05-11T20:02:17.781Z","Analyzed",{"cisa_kev":133,"cisa_ransomware":133,"cisa_vendor":9,"epss_severity":134,"epss_score":135,"severity":136,"severity_score":137,"severity_version":138,"severity_source":139,"severity_vector":140,"severity_status":131},false,"low",0.00013,"high",7.8,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",[142,148,152,156,160,164,168],{"url":143,"sources":144,"tags":146},"https://git.kernel.org/stable/c/8180d0c27b93a6eb60da1b08ea079e3926328214",[145,139],"cve.org",[147],"Patch",{"url":149,"sources":150,"tags":151},"https://git.kernel.org/stable/c/70e329b440762390258a6fe8c0de93c9fdd56c77",[145,139],[147],{"url":153,"sources":154,"tags":155},"https://git.kernel.org/stable/c/f3f98d7d84b31828004545e29fd7262b9f444139",[145,139],[147],{"url":157,"sources":158,"tags":159},"https://git.kernel.org/stable/c/ae20db45e482303a20e56f2db667a9d9c54ac7e7",[145,139],[147],{"url":161,"sources":162,"tags":163},"https://git.kernel.org/stable/c/7958c1bf5b03c6f1f58e724dbdec93f8f60b96fc",[145,139],[147],{"url":165,"sources":166,"tags":167},"https://git.kernel.org/stable/c/cda4672da1c26835dcbd7aec2bfed954eda9b5ef",[145,139],[147],{"url":169,"sources":170,"tags":171},"https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html",[145,139],[172,173],"X Transferred","Mailing List",[],{"date":176,"score":135,"percentile":177},"2026-06-03",0.02068,[179,182,185,188,191,194,197,200,202,204,207,210,213,215,218,222,225,228,231,233,236,239,242,245,248,250,253,256,259,262,265,268,271,274,277,279,282,285,288,291,294,296,299,302,304,307,309,311,314,317,319,321,324,327,331,334,337,340,343,346,349,352,355,357,360,363,366,369,372,375,378,381,383,386,389,392,395,398,401,404,406,409,412,414,417,420,422,425,428,431],{"date":180,"score":135,"percentile":181},"2025-11-04",0.01377,{"date":183,"score":135,"percentile":184},"2025-11-05",0.01402,{"date":186,"score":135,"percentile":187},"2025-11-06",0.01419,{"date":189,"score":135,"percentile":190},"2025-11-07",0.01425,{"date":192,"score":135,"percentile":193},"2025-11-08",0.01428,{"date":195,"score":135,"percentile":196},"2025-11-09",0.01427,{"date":198,"score":135,"percentile":199},"2025-11-10",0.01408,{"date":201,"score":135,"percentile":187},"2025-11-11",{"date":203,"score":135,"percentile":190},"2025-11-12",{"date":205,"score":135,"percentile":206},"2025-11-13",0.01436,{"date":208,"score":135,"percentile":209},"2025-11-14",0.01443,{"date":211,"score":135,"percentile":212},"2025-11-15",0.01464,{"date":214,"score":135,"percentile":212},"2025-11-16",{"date":216,"score":135,"percentile":217},"2025-11-17",0.01454,{"date":219,"score":220,"percentile":221},"2025-11-18",0.00092,0.22324,{"date":223,"score":220,"percentile":224},"2025-11-19",0.22334,{"date":226,"score":220,"percentile":227},"2025-11-20",0.22341,{"date":229,"score":135,"percentile":230},"2025-11-21",0.01518,{"date":232,"score":135,"percentile":230},"2025-11-22",{"date":234,"score":135,"percentile":235},"2025-11-23",0.01504,{"date":237,"score":135,"percentile":238},"2025-11-24",0.01499,{"date":240,"score":135,"percentile":241},"2025-11-25",0.01486,{"date":243,"score":135,"percentile":244},"2025-11-26",0.0143,{"date":246,"score":135,"percentile":247},"2025-11-27",0.01429,{"date":249,"score":135,"percentile":193},"2025-11-28",{"date":251,"score":135,"percentile":252},"2025-11-29",0.01467,{"date":254,"score":135,"percentile":255},"2025-11-30",0.01477,{"date":257,"score":135,"percentile":258},"2025-12-01",0.01506,{"date":260,"score":135,"percentile":261},"2025-12-02",0.015,{"date":263,"score":135,"percentile":264},"2025-12-03",0.01501,{"date":266,"score":135,"percentile":267},"2025-12-04",0.01475,{"date":269,"score":135,"percentile":270},"2025-12-05",0.01487,{"date":272,"score":135,"percentile":273},"2025-12-06",0.01489,{"date":275,"score":135,"percentile":276},"2025-12-07",0.01482,{"date":278,"score":135,"percentile":276},"2025-12-08",{"date":280,"score":135,"percentile":281},"2025-12-09",0.01497,{"date":283,"score":135,"percentile":284},"2025-12-10",0.01511,{"date":286,"score":135,"percentile":287},"2025-12-11",0.01507,{"date":289,"score":135,"percentile":290},"2025-12-12",0.0151,{"date":292,"score":135,"percentile":293},"2025-12-13",0.01493,{"date":295,"score":135,"percentile":241},"2025-12-14",{"date":297,"score":135,"percentile":298},"2025-12-15",0.01481,{"date":300,"score":135,"percentile":301},"2025-12-16",0.0149,{"date":303,"score":135,"percentile":281},"2025-12-17",{"date":305,"score":135,"percentile":306},"2025-12-18",0.01495,{"date":308,"score":135,"percentile":264},"2025-12-19",{"date":310,"score":135,"percentile":264},"2025-12-20",{"date":312,"score":135,"percentile":313},"2025-12-21",0.01512,{"date":315,"score":135,"percentile":316},"2025-12-22",0.01513,{"date":318,"score":135,"percentile":290},"2025-12-23",{"date":320,"score":135,"percentile":313},"2025-12-24",{"date":322,"score":135,"percentile":323},"2025-12-25",0.01517,{"date":325,"score":135,"percentile":326},"2025-12-26",0.0152,{"date":328,"score":329,"percentile":330},"2025-12-27",0.00012,0.01227,{"date":332,"score":329,"percentile":333},"2025-12-28",0.01228,{"date":335,"score":329,"percentile":336},"2025-12-29",0.0122,{"date":338,"score":329,"percentile":339},"2025-12-30",0.01216,{"date":341,"score":329,"percentile":342},"2025-12-31",0.01215,{"date":344,"score":329,"percentile":345},"2026-01-01",0.0124,{"date":347,"score":329,"percentile":348},"2026-01-02",0.01236,{"date":350,"score":329,"percentile":351},"2026-01-03",0.01238,{"date":353,"score":329,"percentile":354},"2026-01-04",0.01206,{"date":356,"score":329,"percentile":342},"2026-01-05",{"date":358,"score":329,"percentile":359},"2026-01-06",0.0121,{"date":361,"score":329,"percentile":362},"2026-01-07",0.01213,{"date":364,"score":329,"percentile":365},"2026-01-08",0.01226,{"date":367,"score":329,"percentile":368},"2026-01-09",0.01241,{"date":370,"score":329,"percentile":371},"2026-01-10",0.01247,{"date":373,"score":329,"percentile":374},"2026-01-11",0.01246,{"date":376,"score":329,"percentile":377},"2026-01-12",0.01252,{"date":379,"score":329,"percentile":380},"2026-01-13",0.01248,{"date":382,"score":329,"percentile":371},"2026-01-14",{"date":384,"score":329,"percentile":385},"2026-01-15",0.01261,{"date":387,"score":329,"percentile":388},"2026-01-16",0.01266,{"date":390,"score":329,"percentile":391},"2026-01-17",0.01267,{"date":393,"score":329,"percentile":394},"2026-01-18",0.01281,{"date":396,"score":329,"percentile":397},"2026-01-19",0.01275,{"date":399,"score":329,"percentile":400},"2026-01-20",0.01262,{"date":402,"score":329,"percentile":403},"2026-01-21",0.01259,{"date":405,"score":329,"percentile":403},"2026-01-22",{"date":407,"score":329,"percentile":408},"2026-01-23",0.01272,{"date":410,"score":329,"percentile":411},"2026-01-24",0.01276,{"date":413,"score":329,"percentile":397},"2026-01-25",{"date":415,"score":329,"percentile":416},"2026-01-26",0.01274,{"date":418,"score":329,"percentile":419},"2026-01-27",0.01264,{"date":421,"score":329,"percentile":400},"2026-01-28",{"date":423,"score":329,"percentile":424},"2026-01-29",0.01268,{"date":426,"score":329,"percentile":427},"2026-01-30",0.0127,{"date":429,"score":329,"percentile":430},"2026-01-31",0.01286,{"date":432,"score":329,"percentile":433},"2026-02-01",0.0131,[435],{"source":139,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":436,"cvss_v4_0":9},{"baseScore":137,"baseSeverity":437,"vectorString":140,"impactScore":438,"exploitabilityScore":439},"HIGH",9.8,4.6,[441,450,479],{"ecosystem":9,"name":442,"vendor":443,"product":444,"cpe_part":445,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":446},"debian linux","debian","debian_linux","o",[447],{"version":448,"is_range":133,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.0","cpe",{"ecosystem":9,"name":451,"vendor":452,"product":452,"cpe_part":453,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":454},"Linux","linux","a",[455,462,465,468,471,474,477],{"version":456,"is_range":457,"range_type":145,"version_start":458,"version_start_type":459,"version_end":460,"version_end_type":461,"fixed_in":9},">= 9030aaf9bf0a1eee47a154c316c789e959638b0f, \u003C 8180d0c27b93a6eb60da1b08ea079e3926328214",true,"9030aaf9bf0a1eee47a154c316c789e959638b0f","including","8180d0c27b93a6eb60da1b08ea079e3926328214","excluding",{"version":463,"is_range":457,"range_type":145,"version_start":458,"version_start_type":459,"version_end":464,"version_end_type":461,"fixed_in":9},">= 9030aaf9bf0a1eee47a154c316c789e959638b0f, \u003C 70e329b440762390258a6fe8c0de93c9fdd56c77","70e329b440762390258a6fe8c0de93c9fdd56c77",{"version":466,"is_range":457,"range_type":145,"version_start":458,"version_start_type":459,"version_end":467,"version_end_type":461,"fixed_in":9},">= 9030aaf9bf0a1eee47a154c316c789e959638b0f, \u003C f3f98d7d84b31828004545e29fd7262b9f444139","f3f98d7d84b31828004545e29fd7262b9f444139",{"version":469,"is_range":457,"range_type":145,"version_start":458,"version_start_type":459,"version_end":470,"version_end_type":461,"fixed_in":9},">= 9030aaf9bf0a1eee47a154c316c789e959638b0f, \u003C ae20db45e482303a20e56f2db667a9d9c54ac7e7","ae20db45e482303a20e56f2db667a9d9c54ac7e7",{"version":472,"is_range":457,"range_type":145,"version_start":458,"version_start_type":459,"version_end":473,"version_end_type":461,"fixed_in":9},">= 9030aaf9bf0a1eee47a154c316c789e959638b0f, \u003C 7958c1bf5b03c6f1f58e724dbdec93f8f60b96fc","7958c1bf5b03c6f1f58e724dbdec93f8f60b96fc",{"version":475,"is_range":457,"range_type":145,"version_start":458,"version_start_type":459,"version_end":476,"version_end_type":461,"fixed_in":9},">= 9030aaf9bf0a1eee47a154c316c789e959638b0f, \u003C cda4672da1c26835dcbd7aec2bfed954eda9b5ef","cda4672da1c26835dcbd7aec2bfed954eda9b5ef",{"version":478,"is_range":133,"range_type":145,"version_start":478,"version_start_type":459,"version_end":478,"version_end_type":459,"fixed_in":9},"2.6.34",{"ecosystem":9,"name":480,"vendor":452,"product":481,"cpe_part":445,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":482},"linux kernel","linux_kernel",[483,486,490,494,498,502,504,506],{"version":484,"is_range":457,"range_type":449,"version_start":9,"version_start_type":9,"version_end":485,"version_end_type":461,"fixed_in":9},"lt5.10.210","5.10.210",{"version":487,"is_range":457,"range_type":449,"version_start":488,"version_start_type":459,"version_end":489,"version_end_type":461,"fixed_in":9},"gte5.11_lt5.15.149","5.11","5.15.149",{"version":491,"is_range":457,"range_type":449,"version_start":492,"version_start_type":459,"version_end":493,"version_end_type":461,"fixed_in":9},"gte5.16_lt6.1.79","5.16","6.1.79",{"version":495,"is_range":457,"range_type":449,"version_start":496,"version_start_type":459,"version_end":497,"version_end_type":461,"fixed_in":9},"gte6.2_lt6.6.18","6.2","6.6.18",{"version":499,"is_range":457,"range_type":449,"version_start":500,"version_start_type":459,"version_end":501,"version_end_type":461,"fixed_in":9},"gte6.7_lt6.7.6","6.7","6.7.6",{"version":503,"is_range":133,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.8:rc1",{"version":505,"is_range":133,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.8:rc2",{"version":507,"is_range":133,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.8:rc3"]