CVE-2024-35869

Summary

In the Linux kernel, the following vulnerability has been resolved:

smb: client: guarantee refcounted children from parent session

Avoid potential use-after-free bugs when walking DFS referrals, mounting and performing DFS failover by ensuring that all children from parent @tcon->ses are also refcounted. They're all needed across the entire DFS mount. Get rid of @tcon->dfs_ses_list while we're at it, too.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux8e3554150d6c80a84b3cb046615d1a0e943811dc < 645f332c6b63499cc76197f9b6bffcc659ba64ccaffected
LinuxLinux8e3554150d6c80a84b3cb046615d1a0e943811dc < e1db9ae87b7148c021daee1fcc4bc71b2ac58a79affected
LinuxLinux8e3554150d6c80a84b3cb046615d1a0e943811dc < 062a7f0ff46eb57aff526897bd2bebfdb1d3046aaffected
LinuxLinuxf30d226bcc9f0e2d97b4a6e94c43a28148fbeab6affected
LinuxLinuxc082c3be0f96e759ff2e361d929832fda0b93851affected
LinuxLinux6.2.15 < 6.3affected
LinuxLinux6.3.2 < 6.4affected
LinuxLinux6.4affected
LinuxLinux0 < 6.4unaffected
LinuxLinux6.6.29 <= 6.6.*unaffected
LinuxLinux6.8.5 <= 6.8.*unaffected
LinuxLinux6.9 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

CVE Program Container

Additional References

References