CVE-2024-58092

Summary

In the Linux kernel, the following vulnerability has been resolved:

nfsd: fix legacy client tracking initialization

Get rid of the nfsd4_legacy_tracking_ops->init() call in check_for_legacy_methods(). That will be handled in the caller (nfsd4_client_tracking_init()). Otherwise, we'll wind up calling nfsd4_legacy_tracking_ops->init() twice, and the second time we'll trigger the BUG_ON() in nfsd4_init_recdir().

Affected Software

VendorProductVersion RangeStatus
LinuxLinux74fd48739d0488e39ae18b0168720f449a06690c < 95407304253a4bf03494d921c6913e220c26cc63affected
LinuxLinux74fd48739d0488e39ae18b0168720f449a06690c < cdd66082b227eb695cbf54b7c121ea032e869981affected
LinuxLinux74fd48739d0488e39ae18b0168720f449a06690c < de71d4e211eddb670b285a0ea477a299601ce1caaffected
LinuxLinux6.8affected
LinuxLinux0 < 6.8unaffected
LinuxLinux6.12.22 <= 6.12.*unaffected
LinuxLinux6.13.10 <= 6.13.*unaffected
LinuxLinux6.14 <= *unaffected

Weaknesses

References