CVE-2024-50241

MEDIUM

Linux Kernel 6.10.14-6.11.7 - Use-After-Free in NFSD Copy Operation

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: NFSD: Initialize struct nfsd4_copy earlier Ensure the refcount and async_copies fields are initialized early. cleanup_async_copy() will reference these fields if an error occurs in nfsd4_copy(). If they are not correctly initialized, at the very least, a refcount underflow occurs.

References (6)

Core 6

Core References

Patch

https://git.kernel.org/stable/c/c3074003fa6837c2b89a34d8d12d9463b59d22d6

Patch

https://git.kernel.org/stable/c/059434d23c4578d9d02efb92d848ea21bc640112

Patch

https://git.kernel.org/stable/c/7267625baf365a969f1b25ded6f07b64bc90ec5b

Patch

https://git.kernel.org/stable/c/421f1a2a1afb47d88de09457ef7687e1df7bc997

Mailing List, Patch

https://git.kernel.org/stable/c/e30a9a2f69c34a00a3cb4fd45c5d231929e66fb1

Mailing List, Patch

https://git.kernel.org/stable/c/63fab04cbd0f96191b6e5beedc3b643b01c15889

Scores

CVSS v3 5.5

EPSS 0.0021

EPSS Percentile 10.5%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-908

Status published

Products (12)

linux/Kernel 6.11.3 - 6.11.7linux

Linux/Linux 43e46ee5efc03990b223f7aa8b77aa9c3d3acfdf - 7267625baf365a969f1b25ded6f07b64bc90ec5b

Linux/Linux 6.10.14 - 6.11

Linux/Linux 6.11.3 - 6.11.7

Linux/Linux 6a488ad7745b8f64625c6d3a24ce7e448e83f11b - e30a9a2f69c34a00a3cb4fd45c5d231929e66fb1

Linux/Linux 7ea9260874b779637aff6d24c344b8ef4ac862a0 - c3074003fa6837c2b89a34d8d12d9463b59d22d6

Linux/Linux 9e52ff544e0bfa09ee339fd7b0937ee3c080c24e - 059434d23c4578d9d02efb92d848ea21bc640112

Linux/Linux aadc3bbea163b6caaaebfdd2b6c4667fbc726752 - 63fab04cbd0f96191b6e5beedc3b643b01c15889

Linux/Linux ae267989b7b7933dfedcd26468d0a88fc3a9da9e - 421f1a2a1afb47d88de09457ef7687e1df7bc997

Linux/Linux b4e21431a0db4854b5023cd5af001be557e6c3db

... and 2 more

Published Nov 09, 2024

Tracked Since Feb 18, 2026