CVE-2024-44992

CVSS v3 5.5 MEDIUM

5.5^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

n the Linux kernel, the following vulnerability has been resolved: smb/client: avoid possible NULL dereference in cifs_free_subrequest() Clang static checker (scan-build) warning: cifsglob.h:line 890, column 3 Access to field 'ops' results in a dereference of a null pointer. Commit 519be989717c ("cifs: Add a tracepoint to track credits involved in R/W requests") adds a check for 'rdata->server', and let clang throw this warning about NULL dereference. When 'rdata->credits.value != 0 && rdata->server == NULL' happens, add_credits_and_wake_if() will call rdata->server->ops->add_credits(). This will cause NULL dereference problem. Add a check for 'rdata->server' to avoid NULL dereference.

References

Link	Resource
https://git.kernel.org/stable/c/74c2ab6d653b4c2354df65a7f7f2df1925a40a51	Patch
https://git.kernel.org/stable/c/fead60a6d5f84b472b928502a42c419253afe6c1	Patch

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel:6.11:rc1::::::
	cpe:2.3:o:linux:linux_kernel:6.11:rc2::::::
	cpe:2.3:o:linux:linux_kernel:6.11:rc3::::::

History

06 Sep 2024, 16:29

Type	Values Removed	Values Added
CPE		cpe:2.3:o:linux:linux_kernel:6.11:rc2:::::: cpe:2.3:o:linux:linux_kernel:6.11:rc3:::::: cpe:2.3:o:linux:linux_kernel:6.11:rc1:::::: cpe:2.3:o:linux:linux_kernel::::::::
CWE		CWE-476
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 5.5
First Time		Linux Linux linux Kernel
References	~~() https://git.kernel.org/stable/c/74c2ab6d653b4c2354df65a7f7f2df1925a40a51 -~~	() https://git.kernel.org/stable/c/74c2ab6d653b4c2354df65a7f7f2df1925a40a51 - Patch
References	~~() https://git.kernel.org/stable/c/fead60a6d5f84b472b928502a42c419253afe6c1 -~~	() https://git.kernel.org/stable/c/fead60a6d5f84b472b928502a42c419253afe6c1 - Patch

05 Sep 2024, 12:53

Type	Values Removed	Values Added
Summary		(es) En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: smb/client: evitar posible desreferencia NULL en cifs_free_subrequest() Advertencia del verificador estático de Clang (scan-build): cifsglob.h:línea 890, columna 3 El acceso al campo 'ops' da como resultado una desreferencia de un puntero nulo. El commit 519be989717c ("cifs: Agregar un punto de seguimiento para rastrear créditos involucrados en solicitudes R/W") agrega una verificación para 'rdata->server' y permite que clang lance esta advertencia sobre la desreferencia NULL. Cuando sucede 'rdata->credits.value != 0 && rdata->server == NULL', add_credits_and_wake_if() llamará a rdata->server->ops->add_credits(). Esto causará un problema de desreferencia NULL. Agregue una verificación para 'rdata->server' para evitar la desreferencia NULL.

04 Sep 2024, 20:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-09-04 20:15

Updated : 2024-09-06 16:29

NVD link : CVE-2024-44992

Mitre link : CVE-2024-44992

CVE.ORG link : CVE-2024-44992

JSON object : View

Products Affected

linux

linux_kernel

CWE

CWE-476

NULL Pointer Dereference

5.5 /10