CVE-2024-50086
7.8
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
ksmbd: fix user-after-free from session log off
There is racy issue between smb2 session log off and smb2 session setup. It will cause user-after-free from session log off. This add session_lock when setting SMB2_SESSION_EXPIRED and referece count to session struct not to free session while it is being used.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 0626e6641f6b467447c81dd7678a69c66f7746cf < 0f62358ce85b2d4c949ef1b648be01b29cec667a | affected |
| Linux | Linux | 0626e6641f6b467447c81dd7678a69c66f7746cf < a9839c37fd813b432988f58a9d9dd59253d3eb2c | affected |
| Linux | Linux | 0626e6641f6b467447c81dd7678a69c66f7746cf < 5511999e9615e4318e9142d23b29bd1597befc08 | affected |
| Linux | Linux | 0626e6641f6b467447c81dd7678a69c66f7746cf < ee371898b53a9b9b51c02d22a8c31bfb86d45f0d | affected |
| Linux | Linux | 0626e6641f6b467447c81dd7678a69c66f7746cf < 7aa8804c0b67b3cb263a472d17f2cb50d7f1a930 | affected |
| Linux | Linux | 5.15 | affected |
| Linux | Linux | 0 < 5.15 | unaffected |
| Linux | Linux | 5.15.171 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.114 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.58 <= 6.6.* | unaffected |
| Linux | Linux | 6.11.5 <= 6.11.* | unaffected |
| Linux | Linux | 6.12 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
CVE Program Container
Additional References
References
- https://git.kernel.org/stable/c/0f62358ce85b2d4c949ef1b648be01b29cec667a
- https://git.kernel.org/stable/c/a9839c37fd813b432988f58a9d9dd59253d3eb2c
- https://git.kernel.org/stable/c/5511999e9615e4318e9142d23b29bd1597befc08
- https://git.kernel.org/stable/c/ee371898b53a9b9b51c02d22a8c31bfb86d45f0d
- https://git.kernel.org/stable/c/7aa8804c0b67b3cb263a472d17f2cb50d7f1a930
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.