CVE-2024-44992

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-44992
In the Linux kernel, the following vulnerability has been resolved: smb/client: avoid possible NULL dereference in cifs_free_subrequest() Clang static checker (scan-build) warning: cifsglob.h:line 890, column 3 Access to field 'ops' results in a dereference of a null pointer. Commit 519be989717c ("cifs: Add a tracepoint to track credits involved in R/W requests") adds a check for 'rdata->server', and let clang throw this warning about NULL dereference. When 'rdata->credits.value != 0 && rdata->server == NULL' happens, add_credits_and_wake_if() will call rdata->server->ops->add_credits(). This will cause NULL dereference problem. Add a check for 'rdata->server' to avoid NULL dereference.

5.5 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://git.kernel.org/stable/c/74c2ab6d653b4c2354df65a7f7f2df1925a40a51 Patch
https://git.kernel.org/stable/c/fead60a6d5f84b472b928502a42c419253afe6c1 Patch
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.11:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.11:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.11:rc3:*:*:*:*:*:*
History

06 Sep 2024, 16:29

Type Values Removed Values Added
First Time Linux
Linux linux Kernel
References () https://git.kernel.org/stable/c/74c2ab6d653b4c2354df65a7f7f2df1925a40a51 - () https://git.kernel.org/stable/c/74c2ab6d653b4c2354df65a7f7f2df1925a40a51 - Patch
References () https://git.kernel.org/stable/c/fead60a6d5f84b472b928502a42c419253afe6c1 - () https://git.kernel.org/stable/c/fead60a6d5f84b472b928502a42c419253afe6c1 - Patch
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 5.5
CPE cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.11:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.11:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.11:rc3:*:*:*:*:*:*
CWE CWE-476

05 Sep 2024, 12:53

Type Values Removed Values Added
Summary
  • (es) En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: smb/client: evitar posible desreferencia NULL en cifs_free_subrequest() Advertencia del verificador estático de Clang (scan-build): cifsglob.h:línea 890, columna 3 El acceso al campo 'ops' da como resultado una desreferencia de un puntero nulo. El commit 519be989717c ("cifs: Agregar un punto de seguimiento para rastrear créditos involucrados en solicitudes R/W") agrega una verificación para 'rdata->server' y permite que clang lance esta advertencia sobre la desreferencia NULL. Cuando sucede 'rdata->credits.value != 0 && rdata->server == NULL', add_credits_and_wake_if() llamará a rdata->server->ops->add_credits(). Esto causará un problema de desreferencia NULL. Agregue una verificación para 'rdata->server' para evitar la desreferencia NULL.

04 Sep 2024, 20:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-09-04 20:15

Updated : 2024-09-06 16:29

NVD link : CVE-2024-44992

Mitre link : CVE-2024-44992

CVE.ORG link : CVE-2024-44992

JSON object : View

Products Affected

linux

  • linux_kernel
CWE
CWE-476

NULL Pointer Dereference