smb: client: fix double put of @cfile in smb2_rename_path()
CVE-2024-46736

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
18 September 2024

What is CVE-2024-46736?

In the Linux kernel, the following vulnerability has been resolved:

smb: client: fix double put of @cfile in smb2_rename_path()

If smb2_set_path_attr() is called with a valid @cfile and returned -EINVAL, we need to call cifs_get_writable_path() again as the reference of @cfile was already dropped by previous smb2_compound_op() call.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 1e60bc0e954389af82f1d9a85f13a63f6572350f

Linux 71f15c90e785d1de4bcd65a279e7256684c25c0d < 1a46c7f6546b73cbf36f5a618a1a6bbb45391eb3

Linux 71f15c90e785d1de4bcd65a279e7256684c25c0d < 3523a3df03c6f04f7ea9c2e7050102657e331a4f

References

https://git.kernel.org/stable/c/b27ea9c96efd2c252a981fb00...
https://git.kernel.org/stable/c/1a46c7f6546b73cbf36f5a618...
https://git.kernel.org/stable/c/3523a3df03c6f04f7ea9c2e70...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.