CVE-2024-35914

Summary

In the Linux kernel, the following vulnerability has been resolved:

nfsd: Fix error cleanup path in nfsd_rename()

Commit a8b0026847b8 ("rename(): avoid a deadlock in the case of parents having no common ancestor") added an error bail out path. However this path does not drop the remount protection that has been acquired. Fix the cleanup path to properly drop the remount protection.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxa8b0026847b8c43445c921ad2c85521c92eb175f < 331e125e02c08ffaecc1074af78a988a278039bdaffected
LinuxLinuxa8b0026847b8c43445c921ad2c85521c92eb175f < 9fe6e9e7b58944037714442384075c17cfde1c56affected
LinuxLinux6.8affected
LinuxLinux0 < 6.8unaffected
LinuxLinux6.8.5 <= 6.8.*unaffected
LinuxLinux6.9 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References