5.5

CVE-2024-26822

smb: client: set correct id, uid and cruid for multiuser automounts

In the Linux kernel, the following vulnerability has been resolved:

smb: client: set correct id, uid and cruid for multiuser automounts

When uid, gid and cruid are not specified, we need to dynamically
set them into the filesystem context used for automounting otherwise
they'll end up reusing the values from the parent mount.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 6.2 < 6.6.18
LinuxLinux Kernel Version >= 6.7 < 6.7.6
LinuxLinux Kernel Version5.15.124
LinuxLinux Kernel Version6.1.54
LinuxLinux Kernel Version6.8 Updaterc1
LinuxLinux Kernel Version6.8 Updaterc2
LinuxLinux Kernel Version6.8 Updaterc3
LinuxLinux Kernel Version6.8 Updaterc4
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.23% 0.13
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
https://git.kernel.org/stable/c/4508ec17357094e2075f334948393ddedbb75157
Patch
https://git.kernel.org/stable/c/7590ba9057c6d74c66f3b909a383ec47cd2f27fb
Patch
https://git.kernel.org/stable/c/c2aa2718cda2d56b4a551cb40043e9abc9684626
Patch
https://git.kernel.org/stable/c/2ceba8ae1bd1f5589548cb722a5c583ca3a2dede
Patch
https://git.kernel.org/stable/c/4a6e4c56721a3e6e2550b72ec56aab306c4607a7
Patch