Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2024-50286

Опубликовано: 19 нояб. 2024
Источник: redhat
CVSS3: 7
EPSS Низкий

Описание

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix slab-use-after-free in ksmbd_smb2_session_create There is a race condition between ksmbd_smb2_session_create and ksmbd_expire_session. This patch add missing sessions_table_lock while adding/deleting session from global session table.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6kernelNot affected
Red Hat Enterprise Linux 7kernelNot affected
Red Hat Enterprise Linux 7kernel-rtNot affected
Red Hat Enterprise Linux 8kernelNot affected
Red Hat Enterprise Linux 8kernel-rtNot affected
Red Hat Enterprise Linux 9kernelNot affected
Red Hat Enterprise Linux 9kernel-rtNot affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low
Дефект:
CWE-416
https://bugzilla.redhat.com/show_bug.cgi?id=2327186kernel: ksmbd: fix slab-use-after-free in ksmbd_smb2_session_create

EPSS

Процентиль: 3%
0.00017
Низкий

7 High

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2024-50286

CVSS3: 7
ubuntu
около 1 года назад

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix slab-use-after-free in ksmbd_smb2_session_create There is a race condition between ksmbd_smb2_session_create and ksmbd_expire_session. This patch add missing sessions_table_lock while adding/deleting session from global session table.

nvd логотип

CVE-2024-50286

CVSS3: 7
nvd
около 1 года назад

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix slab-use-after-free in ksmbd_smb2_session_create There is a race condition between ksmbd_smb2_session_create and ksmbd_expire_session. This patch add missing sessions_table_lock while adding/deleting session from global session table.

msrc логотип

CVE-2024-50286

CVSS3: 7
msrc
12 месяцев назад

Описание отсутствует

debian логотип

CVE-2024-50286

CVSS3: 7
debian
около 1 года назад

In the Linux kernel, the following vulnerability has been resolved: k ...

github логотип

GHSA-jh47-c26g-fr5q

CVSS3: 7
github
около 1 года назад

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix slab-use-after-free in ksmbd_smb2_session_create There is a race condition between ksmbd_smb2_session_create and ksmbd_expire_session. This patch add missing sessions_table_lock while adding/deleting session from global session table.

EPSS

Процентиль: 3%
0.00017
Низкий

7 High

CVSS3