Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd416baaa9-dc9f-4396-8d5f-8c081fb06d67NVD:CVE-2024-46690
HistorySep 13, 2024 - 6:15 a.m.

CVE-2024-46690

2024-09-1306:15:13
416baaa9-dc9f-4396-8d5f-8c081fb06d67
web.nvd.nist.gov
1
linux kernel
nfsd
vulnerability
cve-2024-46690

EPSS

0

Percentile

9.6%

JSON

In the Linux kernel, the following vulnerability has been resolved:

nfsd: fix nfsd4_deleg_getattr_conflict in presence of third party lease

It is not safe to dereference fl->c.flc_owner without first confirming
fl->fl_lmops is the expected manager. nfsd4_deleg_getattr_conflict()
tests fl_lmops but largely ignores the result and assumes that flc_owner
is an nfs4_delegation anyway. This is wrong.

With this patch we restore the “!= &nfsd_lease_mng_ops” case to behave
as it did before the change mentioned below. This is the same as the
current code, but without any reference to a possible delegation.

Related

osv 1
cve 1
cvelist 1
debiancve 1
osv
osv
CVE-2024-46690
2024-09-13 06:15:13
cve
cve
CVE-2024-46690
2024-09-13 06:15:13
cvelist
cvelist
CVE-2024-46690 nfsd: fix nfsd4_deleg_getattr_conflict in presence of third party lease
2024-09-13 05:29:20
debiancve
debiancve
CVE-2024-46690
2024-09-13 06:15:13

EPSS

0

Percentile

9.6%

JSON
Related for NVD:CVE-2024-46690
osv1cve1cvelist1debiancve1