Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2024-35867
PUBLISHED
More InfoOfficial Page
Assigner-Linux
Assigner Org ID-416baaa9-dc9f-4396-8d5f-8c081fb06d67
View Known Exploited Vulnerability (KEV) details
Published At-19 May, 2024 | 08:34
Updated At-04 May, 2025 | 09:07
Rejected At-
▼CVE Numbering Authority (CNA)
smb: client: fix potential UAF in cifs_stats_proc_show()

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in cifs_stats_proc_show() Skip sessions that are being teared down (status == SES_EXITING) to avoid UAF.

Affected Products
Vendor
Linux Kernel Organization, IncLinux
Product
Linux
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Program Files
  • fs/smb/client/cifs_debug.c
Default Status
unaffected
Versions
Affected
  • From 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 838ec01ea8d3deb5d123e8ed9022e8162dc3f503 (git)
  • From 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before bb6570085826291dc392005f9fec16ea5da3c8ad (git)
  • From 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 16b7d785775eb03929766819415055e367398f49 (git)
  • From 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before c3cf8b74c57924c0985e49a1fdf02d3395111f39 (git)
  • From 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 1e12f0d5c66f07c934041621351973a116fa13c7 (git)
  • From 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 0865ffefea197b437ba78b5dd8d8e256253efd65 (git)
Vendor
Linux Kernel Organization, IncLinux
Product
Linux
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Program Files
  • fs/smb/client/cifs_debug.c
Default Status
affected
Versions
Unaffected
  • From 5.10.237 through 5.10.* (semver)
  • From 5.15.181 through 5.15.* (semver)
  • From 6.1.85 through 6.1.* (semver)
  • From 6.6.26 through 6.6.* (semver)
  • From 6.8.5 through 6.8.* (semver)
  • From 6.9 through * (original_commit_for_fix)
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://git.kernel.org/stable/c/838ec01ea8d3deb5d123e8ed9022e8162dc3f503
N/A
https://git.kernel.org/stable/c/bb6570085826291dc392005f9fec16ea5da3c8ad
N/A
https://git.kernel.org/stable/c/16b7d785775eb03929766819415055e367398f49
N/A
https://git.kernel.org/stable/c/c3cf8b74c57924c0985e49a1fdf02d3395111f39
N/A
https://git.kernel.org/stable/c/1e12f0d5c66f07c934041621351973a116fa13c7
N/A
https://git.kernel.org/stable/c/0865ffefea197b437ba78b5dd8d8e256253efd65
N/A
▼Authorized Data Publishers (ADP)
1. CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://git.kernel.org/stable/c/16b7d785775eb03929766819415055e367398f49
x_transferred
https://git.kernel.org/stable/c/c3cf8b74c57924c0985e49a1fdf02d3395111f39
x_transferred
https://git.kernel.org/stable/c/1e12f0d5c66f07c934041621351973a116fa13c7
x_transferred
https://git.kernel.org/stable/c/0865ffefea197b437ba78b5dd8d8e256253efd65
x_transferred
http://www.openwall.com/lists/oss-security/2024/05/30/2
x_transferred
http://www.openwall.com/lists/oss-security/2024/05/30/1
x_transferred
http://www.openwall.com/lists/oss-security/2024/05/29/2
x_transferred
2. CISA ADP Vulnrichment
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
Details not found