VDB

CISA-2024-35868

CISA-2024-35868 PUBLISHED

Reported by Linux · Published May 19, 2024

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in cifs_stats_proc_write() Skip sessions that are being teared down (status == SES_EXITING) to avoid UAF.

Affected Products

VendorProductVersions
LinuxLinux7f48558e6489d032b1584b0cc9ac4bb11072c034, 7f48558e6489d032b1584b0cc9ac4bb11072c034, 7f48558e6489d032b1584b0cc9ac4bb11072c034
LinuxLinux3.13, 0, 6.1.85
linuxlinux_kernel3.13, 3.13, 3.13
LinuxLinux7f48558e6489d032b1584b0cc9ac4bb11072c034, 7f48558e6489d032b1584b0cc9ac4bb11072c034, 7f48558e6489d032b1584b0cc9ac4bb11072c034

Timeline

  • May 19, 2024 CVE Published
  • Jan 5, 2026 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›