CVE-2024-49999
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
afs: Fix the setting of the server responding flag
In afs_wait_for_operation(), we set transcribe the call responded flag to the server record that we used after doing the fileserver iteration loop - but it's possible to exit the loop having had a response from the server that we've discarded (e.g. it returned an abort or we started receiving data, but the call didn't complete).
This means that op->server might be NULL, but we don't check that before attempting to set the server flag.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 98f9fda2057ba34b720c4d353351024d6dcee90f < 3d51ab44123f35dd1d646d99a15ebef10f55e263 | affected |
| Linux | Linux | 98f9fda2057ba34b720c4d353351024d6dcee90f < 97c953572d98080c5f1486155350bb688041747a | affected |
| Linux | Linux | 98f9fda2057ba34b720c4d353351024d6dcee90f < ff98751bae40faed1ba9c6a7287e84430f7dec64 | affected |
| Linux | Linux | 6.8 | affected |
| Linux | Linux | 0 < 6.8 | unaffected |
| Linux | Linux | 6.10.14 <= 6.10.* | unaffected |
| Linux | Linux | 6.11.3 <= 6.11.* | unaffected |
| Linux | Linux | 6.12 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://git.kernel.org/stable/c/3d51ab44123f35dd1d646d99a15ebef10f55e263
- https://git.kernel.org/stable/c/97c953572d98080c5f1486155350bb688041747a
- https://git.kernel.org/stable/c/ff98751bae40faed1ba9c6a7287e84430f7dec64
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.