VDB

CISA-2024-49988

CISA-2024-49988 PUBLISHED

Reported by Linux · Published October 21, 2024

In the Linux kernel, the following vulnerability has been resolved: ksmbd: add refcnt to ksmbd_conn struct When sending an oplock break request, opinfo->conn is used, But freed ->conn can be used on multichannel. This patch add a reference count to the ksmbd_conn struct so that it can be freed when it is no longer used.

Affected Products

VendorProductVersions
LinuxLinux1da177e4c3f4, 1da177e4c3f4, 1da177e4c3f4
LinuxLinux6.6.55, 6.10.14, 6.11.3
LinuxLinux1da177e4c3f4, 1da177e4c3f4, 6.6.55

Timeline

  • Oct 21, 2024 CVE Published
  • Nov 5, 2024 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›