CVE-2024-41049

Summary

In the Linux kernel, the following vulnerability has been resolved:

filelock: fix potential use-after-free in posix_lock_inode

Light Hsieh reported a KASAN UAF warning in trace_posix_lock_inode(). The request pointer had been changed earlier to point to a lock entry that was added to the inode's list. However, before the tracepoint could fire, another task raced in and freed that lock.

Fix this by moving the tracepoint inside the spinlock, which should ensure that this doesn't happen.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux117fb80cd1e63c419c7a221ce070becb4bfc7b6d < 1cbbb3d9475c403ebedc327490c7c2b991398197affected
LinuxLinuxa6f4129378ca15f62cbdde09a7d3ccc35adcf49d < 7d4c14f4b511fd4c0dc788084ae59b4656ace58baffected
LinuxLinux766e56faddbec2eaf70c9299e1c9ef74d846d32b < 02a8964260756c70b20393ad4006948510ac9967affected
LinuxLinux34bff6d850019e00001129d6de3aa4874c2cf471 < 5cb36e35bc10ea334810937990c2b9023dacb1b0affected
LinuxLinux74f6f5912693ce454384eaeec48705646a21c74f < 432b06b69d1d354a171f7499141116536579eb6aaffected
LinuxLinux74f6f5912693ce454384eaeec48705646a21c74f < 116599f6a26906cf33f67975c59f0692ecf7e9b2affected
LinuxLinux74f6f5912693ce454384eaeec48705646a21c74f < 1b3ec4f7c03d4b07bad70697d7e2f4088d2cfe92affected
LinuxLinuxe75396988bb9b3b90e6e8690604d0f566cea403aaffected
LinuxLinux5.4.257 < 5.4.280affected
LinuxLinux5.10.197 < 5.10.222affected
LinuxLinux5.15.133 < 5.15.163affected
LinuxLinux6.1.55 < 6.1.100affected
LinuxLinux6.5.5 < 6.6affected
LinuxLinux6.6affected
LinuxLinux0 < 6.6unaffected
LinuxLinux5.4.280 <= 5.4.*unaffected
LinuxLinux5.10.222 <= 5.10.*unaffected
LinuxLinux5.15.163 <= 5.15.*unaffected
LinuxLinux6.1.100 <= 6.1.*unaffected
LinuxLinux6.6.41 <= 6.6.*unaffected
LinuxLinux6.9.10 <= 6.9.*unaffected
LinuxLinux6.10 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References