CVE-2024-36958
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
NFSD: Fix nfsd4_encode_fattr4() crasher
Ensure that args.acl is initialized early. It is used in an unconditional call to kfree() on the way out of nfsd4_encode_fattr4().
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 83ab8678ad0c6f27594c716cafe59c8bbd5e49ef < 6a7b07689af6e4e023404bf69b1230f43b2a15bc | affected |
| Linux | Linux | 83ab8678ad0c6f27594c716cafe59c8bbd5e49ef < 18180a4550d08be4eb0387fe83f02f703f92d4e7 | affected |
| Linux | Linux | 6.7 | affected |
| Linux | Linux | 0 < 6.7 | unaffected |
| Linux | Linux | 6.8.10 <= 6.8.* | unaffected |
| Linux | Linux | 6.9 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
CVE Program Container
Additional References
- https://git.kernel.org/stable/c/6a7b07689af6e4e023404bf69b1230f43b2a15bc
- https://git.kernel.org/stable/c/18180a4550d08be4eb0387fe83f02f703f92d4e7
- https://security.netapp.com/advisory/ntap-20250404-0007/
References
- https://git.kernel.org/stable/c/6a7b07689af6e4e023404bf69b1230f43b2a15bc
- https://git.kernel.org/stable/c/18180a4550d08be4eb0387fe83f02f703f92d4e7
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.