Azure Linux 3.0 Security Update: kernel (CVE-2024-42232)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42232 advisory. - In the Linux kernel, the following vulnerability has been resolved: libceph: fix race between delayedwork an...

AZL-47624 CVE-2024-42232 affecting package kernel for versions less than 5.15.164.1-1

In the Linux kernel, the following vulnerability has been resolved: libceph: fix race between delayedwork and cephmoncstop The way the delayed work is handled in cephmoncstop is prone to races with monfault and possibly also finishhunting. Both of these can requeue the delayed work which wouldn't...

CVE-2024-42232 libceph: fix race between delayed_work() and ceph_monc_stop()

In the Linux kernel, the following vulnerability has been resolved: libceph: fix race between delayedwork and cephmoncstop The way the delayed work is handled in cephmoncstop is prone to races with monfault and possibly also finishhunting. Both of these can requeue the delayed work which wouldn't...

CVE-2024-42232 libceph: fix race between delayed_work() and ceph_monc_stop()

In the Linux kernel, the following vulnerability has been resolved: libceph: fix race between delayedwork and cephmoncstop The way the delayed work is handled in cephmoncstop is prone to races with monfault and possibly also finishhunting. Both of these can requeue the delayed work which wouldn't...

CVE-2024-42232

CVE-2024-42232 (Linux kernel, libceph) is a race between delayed_work handling in ceph_monc_stop() and mon_fault()/finish_hunting() that could lead to use-after-free when reusing monc and its associated fields. The fix, as described in connected advisories, is: (1) during session close in ceph_mo...