5.5

CVE-2024-39468

smb: client: fix deadlock in smb2_find_smb_tcon()

In the Linux kernel, the following vulnerability has been resolved:

smb: client: fix deadlock in smb2_find_smb_tcon()

Unlock cifs_tcp_ses_lock before calling cifs_put_smb_ses() to avoid such
deadlock.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version < 5.10.221
LinuxLinux Kernel Version >= 5.11 < 5.15.162
LinuxLinux Kernel Version >= 5.16 < 6.1.94
LinuxLinux Kernel Version >= 6.2 < 6.6.34
LinuxLinux Kernel Version >= 6.7 < 6.9.5
LinuxLinux Kernel Version6.10 Updaterc1
LinuxLinux Kernel Version6.10 Updaterc2
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.18% 0.078
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-667 Improper Locking

The product does not properly acquire or release a lock on a resource, leading to unexpected resource state changes and behaviors.

https://git.kernel.org/stable/c/02c418774f76a0a36a6195c9dbf8971eb4130a15
Patch
https://git.kernel.org/stable/c/21f5dd36e655d25a7b45b61c1e537198b671f720
Patch
https://git.kernel.org/stable/c/225de871ddf994f69a57f035709cad9c0ab8615a
Patch
https://git.kernel.org/stable/c/8d0f5f1ccf675454a833a573c53830a49b7d1a47
Patch
https://git.kernel.org/stable/c/b055752675cd1d1db4ac9c2750db3dc3e89ea261
Patch
https://git.kernel.org/stable/c/b09b556e48968317887a11243a5331a7bc00ece5
Patch
https://cert-portal.siemens.com/productcert/html/ssa-265688.html
https://cert-portal.siemens.com/productcert/html/ssa-355557.html
https://cert-portal.siemens.com/productcert/html/ssa-613116.html