Description

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix slab-use-after-free in ksmbd_smb2_session_create There is a race condition between ksmbd_smb2_session_create and ksmbd_expire_session. This patch add missing sessions_table_lock while adding/deleting session from global session table.

INFO

Published Date :

2024-11-19T01:30:29.948Z

Last Modified :

2025-11-03T22:28:07.988Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-50286 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-50286.

URL Resource
https://git.kernel.org/stable/c/0a77715db22611df50b178374c51e2ba0d58866e cve-icon cve-icon
https://git.kernel.org/stable/c/e7a2ad2044377853cf8c59528dac808a08a99c72 cve-icon cve-icon
https://git.kernel.org/stable/c/e923503a56b3385b64ae492e3225e4623f560c5b cve-icon cve-icon
https://git.kernel.org/stable/c/f56446ba5378d19e31040b548a14ee9a8f1500ea cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html cve-icon
https://lore.kernel.org/linux-cve-announce/2024111948-CVE-2024-50286-85e9@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-50286 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-50286 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact