CVE-2024-56564
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
ceph: pass cred pointer to ceph_mds_auth_match()
This eliminates a redundant get_current_cred() call, because ceph_mds_check_access() has already obtained this pointer.
As a side effect, this also fixes a reference leak in ceph_mds_auth_match(): by omitting the get_current_cred() call, no additional cred reference is taken.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 596afb0b8933ba6ed7227adcc538db26feb25c74 < ffa6ba7bdb7f07f49c9e9150b0176df066520f62 | affected |
| Linux | Linux | 596afb0b8933ba6ed7227adcc538db26feb25c74 < 23426309a4064b25a961e1c72961d8bfc7c8c990 | affected |
| Linux | Linux | 6.10 | affected |
| Linux | Linux | 0 < 6.10 | unaffected |
| Linux | Linux | 6.12.4 <= 6.12.* | unaffected |
| Linux | Linux | 6.13 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/ffa6ba7bdb7f07f49c9e9150b0176df066520f62
- https://git.kernel.org/stable/c/23426309a4064b25a961e1c72961d8bfc7c8c990
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.