CVE-2024-26612

2024-03-1100:00:00

ubuntu.com

linux kernel

vulnerability

cve-2024-26612

netfs

fscache

oops

fscache_put_cache

is_err_or_null

unix

AI Score

6.2

Confidence

Low

EPSS

Percentile

15.5%

JSON

In the Linux kernel, the following vulnerability has been resolved: netfs,
fscache: Prevent Oops in fscache_put_cache() This function dereferences
“cache” and then checks if it’s IS_ERR_OR_NULL(). Check first, then
dereference.

Notes

Author	Note
rodrigo-zaiden	USN-6765-1 for linux-oem-6.5 wrongly stated that this CVE was fixed in version 6.5.0-1022.23. The mentioned notice was revoked and the state of the fix for linux-oem-6.5 was recovered to the previous state.

OSVersionArchitecturePackageVersionFilename
ubuntu23.10noarchlinux< 6.5.0-41.41UNKNOWN
ubuntu23.10noarchlinux-aws< 6.5.0-1021.21UNKNOWN
ubuntu22.04noarchlinux-aws-6.5< anyUNKNOWN
ubuntu23.10noarchlinux-azure< 6.5.0-1022.23UNKNOWN
ubuntu22.04noarchlinux-azure-6.5< 6.5.0-1022.23~22.04.1UNKNOWN
ubuntu23.10noarchlinux-gcp< 6.5.0-1022.24UNKNOWN
ubuntu22.04noarchlinux-gcp-6.5< 6.5.0-1022.24~22.04.1UNKNOWN
ubuntu22.04noarchlinux-hwe-6.5< 6.5.0-41.41~22.04.2UNKNOWN
ubuntu23.10noarchlinux-laptop< 6.5.0-1017.20UNKNOWN
ubuntu23.10noarchlinux-lowlatency< 6.5.0-41.41.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	23.10	noarch	linux	< 6.5.0-41.41	UNKNOWN
ubuntu	23.10	noarch	linux-aws	< 6.5.0-1021.21	UNKNOWN
ubuntu	22.04	noarch	linux-aws-6.5	< any	UNKNOWN
ubuntu	23.10	noarch	linux-azure	< 6.5.0-1022.23	UNKNOWN
ubuntu	22.04	noarch	linux-azure-6.5	< 6.5.0-1022.23~22.04.1	UNKNOWN
ubuntu	23.10	noarch	linux-gcp	< 6.5.0-1022.24	UNKNOWN
ubuntu	22.04	noarch	linux-gcp-6.5	< 6.5.0-1022.24~22.04.1	UNKNOWN
ubuntu	22.04	noarch	linux-hwe-6.5	< 6.5.0-41.41~22.04.2	UNKNOWN
ubuntu	23.10	noarch	linux-laptop	< 6.5.0-1017.20	UNKNOWN
ubuntu	23.10	noarch	linux-lowlatency	< 6.5.0-41.41.1	UNKNOWN