CVE-2024-49988 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: ksmbd: add refcnt to ksmbd_conn struct When sending an oplock break request, opinfo->conn is used, But freed ->conn can be used on multichannel. This patch add a reference count to the ksmbd_conn struct so that it can be freed when it is no longer used.

PUBLISHED Reserved 2024-10-21 | Published 2024-10-21 | Updated 2025-05-04 | Assigner Linux

Product status

Default status

unaffected

0626e6641f6b467447c81dd7678a69c66f7746cf (git) before 18f06bacc197d4ac9b518ad1c69999bc3d83e7aa

affected

0626e6641f6b467447c81dd7678a69c66f7746cf (git) before 9fd3cde4628bcd3549ab95061f2bab74d2ed4f3b

affected

0626e6641f6b467447c81dd7678a69c66f7746cf (git) before e9dac92f4482a382e8c0fe1bc243da5fc3526b0c

affected

0626e6641f6b467447c81dd7678a69c66f7746cf (git) before ee426bfb9d09b29987369b897fe9b6485ac2be27

affected

Default status

affected

5.15

affected

Any version before 5.15

unaffected

6.6.55 (semver)

unaffected

6.10.14 (semver)

unaffected

6.11.3 (semver)

unaffected

6.12 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/18f06bacc197d4ac9b518ad1c69999bc3d83e7aa

git.kernel.org/...c/9fd3cde4628bcd3549ab95061f2bab74d2ed4f3b

git.kernel.org/...c/e9dac92f4482a382e8c0fe1bc243da5fc3526b0c

git.kernel.org/...c/ee426bfb9d09b29987369b897fe9b6485ac2be27

cve.org (CVE-2024-49988)

nvd.nist.gov (CVE-2024-49988)

Download JSON

help @ threatint.eu