Linux Kernel Vulnerability in DLM Component
CVE-2024-56749

5.5MEDIUM

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
29 December 2024

What is CVE-2024-56749?

A vulnerability in the Linux kernel's Distributed Lock Manager (DLM) component has been identified, which can occur during the member recovery process. Specifically, if the dlm_recover_members() function encounters an error, it fails to release references held by the root_list structure that is critical for maintaining resource state blocks (rsbs) during recovery. This can lead to resource retention issues, particularly in scenarios where ping_members() may be interrupted, causing an erroneous state that could affect overall kernel stability and performance. Ensuring timely updates and patches for affected kernel versions is essential to mitigate these concerns.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 3a747f4a2ee85d51b905e2df940de4a924f8060a < 3230718a75a6c30ed60ac920c26be2119fa82b8e

Linux 3a747f4a2ee85d51b905e2df940de4a924f8060a

Linux 3a747f4a2ee85d51b905e2df940de4a924f8060a < 200b977ebbc313a59174ba971006a231b3533dc5

References

https://git.kernel.org/stable/c/3230718a75a6c30ed60ac920c...
https://git.kernel.org/stable/c/fb2ec564887af1f365d754f7c...
https://git.kernel.org/stable/c/200b977ebbc313a59174ba971...

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.