Description

In the Linux kernel, the following vulnerability has been resolved: eventfs: Fix a possible null pointer dereference in eventfs_find_events() In function eventfs_find_events,there is a potential null pointer that may be caused by calling update_events_attr which will perform some operations on the members of the ei struct when ei is NULL. Hence,When ei->is_freed is set,return NULL directly.

INFO

Published Date :

2024-06-25T14:28:56.258Z

Last Modified :

2025-05-04T12:57:00.544Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-39470 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-39470.

URL Resource
https://git.kernel.org/stable/c/5ade5fbdbbb1f023bb70730ba4d74146c8bc7eb9 cve-icon cve-icon
https://git.kernel.org/stable/c/7a1b2d138189375ed1dcd7d0851118230221bd1d cve-icon cve-icon
https://git.kernel.org/stable/c/d4e9a968738bf66d3bb852dd5588d4c7afd6d7f4 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024062500-CVE-2024-39470-5b25@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-39470 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-39470 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact