CVE-2024-46690

UNKNOWN 0.0

nfsd: fix nfsd4_deleg_getattr_conflict in presence of third party lease

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: nfsd: fix nfsd4_deleg_getattr_conflict in presence of third party lease It is not safe to dereference fl->c.flc_owner without first confirming fl->fl_lmops is the expected manager. nfsd4_deleg_getattr_conflict() tests fl_lmops but largely ignores the result and assumes that flc_owner is an nfs4_delegation anyway. This is wrong. With this patch we restore the "!= &nfsd_lease_mng_ops" case to behave as it did before the change mentioned below. This is the same as the current code, but without any reference to a possible delegation.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Sep 13, 2024
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

c5967721e1063648b0506481585ba7e2e49a075e < 1b46a871e980e3daa16fd5e77539966492e8910a c5967721e1063648b0506481585ba7e2e49a075e < 40927f3d0972bf86357a32a5749be71a551241b6

Linux / Linux

6.9

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/1b46a871e980e3daa16fd5e77539966492e8910a git.kernel.org: https://git.kernel.org/stable/c/40927f3d0972bf86357a32a5749be71a551241b6