Lucene search

GoogleOSV:CVE-2024-35861

HistoryMay 19, 2024 - 9:15 a.m.

CVE-2024-35861

2024-05-1909:15:00

Google

osv.dev

linux kernel

vulnerability

smb client

uaf

cifs_signal_cifsd_for_reconnect

sessions

AI Score

6.6

Confidence

Low

JSON

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in cifs_signal_cifsd_for_reconnect() Skip sessions that are being teared down (status == SES_EXITING) to avoid UAF.

References

git.kernel.org/linus/e0e50401cc3921c9eaf1b0e667db174519ea939f

git.kernel.org/stable/c/2cfff21732132e363b4cc275d63ea98f1af726c1

git.kernel.org/stable/c/7e8360ac8774e19b0b25f44fff84a105bb2417e4

git.kernel.org/stable/c/e0e50401cc3921c9eaf1b0e667db174519ea939f

git.kernel.org/stable/c/f9a96a7ad1e8d25dc6662bc7552e0752de74a20d

ubuntu.com/security/CVE-2024-35861

ubuntu.com/security/notices/USN-6893-1

ubuntu.com/security/notices/USN-6893-2

ubuntu.com/security/notices/USN-6893-3

ubuntu.com/security/notices/USN-6918-1

www.cve.org/CVERecord?id=CVE-2024-35861

AI Score

6.6

Confidence

Low

JSON

Related for OSV:CVE-2024-35861