CVE-2024-46801

Summary

In the Linux kernel, the following vulnerability has been resolved:

libfs: fix get_stashed_dentry()

get_stashed_dentry() tries to optimistically retrieve a stashed dentry from a provided location. It needs to ensure to hold rcu lock before it dereference the stashed location to prevent UAF issues. Use rcu_dereference() instead of READ_ONCE() it's effectively equivalent with some lockdep bells and whistles and it communicates clearly that this expects rcu protection.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux07fd7c329839cf0b8c7766883d830a1a0d12d1dd < 03e2a1209a83a380df34a72f7d6d1bc6c74132c7affected
LinuxLinux07fd7c329839cf0b8c7766883d830a1a0d12d1dd < 4e32c25b58b945f976435bbe51f39b32d714052eaffected
LinuxLinux6.9affected
LinuxLinux0 < 6.9unaffected
LinuxLinux6.10.10 <= 6.10.*unaffected
LinuxLinux6.11 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References