CVE-2024-35861

Published: May 19, 2024

Modified: May 23, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in cifs_signal_cifsd_for_reconnect() Skip sessions that are being teared down (status == SES_EXITING) to avoid UAF.

Vendor	Product	Versions
Linux	Linux	affected `dca65818c80cf06e0f08ba2cf94060a5236e73c2 - < 7e8360ac8774e19b0b25f44fff84a105bb2417e4` affected `dca65818c80cf06e0f08ba2cf94060a5236e73c2 - < 2cfff21732132e363b4cc275d63ea98f1af726c1` affected `dca65818c80cf06e0f08ba2cf94060a5236e73c2 - < f9a96a7ad1e8d25dc6662bc7552e0752de74a20d` affected `dca65818c80cf06e0f08ba2cf94060a5236e73c2 - < e0e50401cc3921c9eaf1b0e667db174519ea939f` affected `dd9ccff8c8980bf9ea7f25e83eeb28154f902920` +1 more versions
Linux	Linux	affected `5.18` unaffected `0 - < 5.18` unaffected `6.1.85 - <= 6.1.` unaffected `6.6.26 - <= 6.6.` unaffected `6.8.5 - <= 6.8.*` +1 more versions

References

https://git.kernel.org/stable/c/7e8360ac8774e19b0b25f44fff84a105bb2417e4

https://git.kernel.org/stable/c/2cfff21732132e363b4cc275d63ea98f1af726c1

https://git.kernel.org/stable/c/f9a96a7ad1e8d25dc6662bc7552e0752de74a20d

https://git.kernel.org/stable/c/e0e50401cc3921c9eaf1b0e667db174519ea939f

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-35861

Description

Affected Products

References