CVE-2024-53101

MEDIUM 5.5

fs: Fix uninitialized value issue in from_kuid and from_kgid

CVSS Score

5.5

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: fs: Fix uninitialized value issue in from_kuid and from_kgid ocfs2_setattr() uses attr->ia_mode, attr->ia_uid and attr->ia_gid in a trace point even though ATTR_MODE, ATTR_UID and ATTR_GID aren't set. Initialize all fields of newattrs to avoid uninitialized variables, by checking if ATTR_MODE, ATTR_UID, ATTR_GID are initialized, otherwise 0.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Nov 25, 2024
Last Updated	May 12, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new medium vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

468eedde23d6c9335935773f4f5764267d5a7763 < a0c77e5e3dcbffc7c6080ccc89c037f0c86496cf 468eedde23d6c9335935773f4f5764267d5a7763 < 17ecb40c5cc7755a321fb6148cba5797431ee5b8 468eedde23d6c9335935773f4f5764267d5a7763 < 9db25c2b41c34963c3ccf473b08171f87670652e 468eedde23d6c9335935773f4f5764267d5a7763 < b3e612bd8f64ce62e731e95f635e06a2efe3c80c 468eedde23d6c9335935773f4f5764267d5a7763 < 5a72b0d3497b818d8f000c347a7c11801eb27bfc 468eedde23d6c9335935773f4f5764267d5a7763 < 1cb5bfc5bfc651982b6203c224d49b7ddacf28bc 468eedde23d6c9335935773f4f5764267d5a7763 < 1c28bca1256aecece6e94b26b85cd07e08b0dc90 468eedde23d6c9335935773f4f5764267d5a7763 < 15f34347481648a567db67fb473c23befb796af5

Linux / Linux

2.6.39

References

NVD ↗ CVE.org ↗ EPSS Data ↗