← Back

CVE-2024-50283

nvd nist
Published: Nov 19, 2024Modified: Jun 17, 2026

JSON object

Loading...
7.8
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploitability: 1.8 / Impact: 5.9
Source: NVD

Description

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix slab-use-after-free in smb3_preauth_hash_rsp ksmbd_user_session_put should be called under smb3_preauth_hash_rsp(). It will avoid freeing session before calling smb3_preauth_hash_rsp().

Affected (9)

Products: Linux: Linux Kernel
1 product
Linux Kernel
Configuration A
9 vulnerable
Vulnerable SoftwareAffected Versions
Linux
Before 6.1.117
From 6.2 to 6.6.61
From 6.7 to 6.11.8
Version 6.12 rc1
Version 6.12 rc2
Version 6.12 rc3
Version 6.12 rc4
Version 6.12 rc5
Version 6.12 rc6

References (6)

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Patch
Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Patch
Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Patch
Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Patch
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.