CVE-2024-39470

Published: Jun 25, 2024

Modified: May 23, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: eventfs: Fix a possible null pointer dereference in eventfs_find_events() In function eventfs_find_events,there is a potential null pointer that may be caused by calling update_events_attr which will perform some operations on the members of the ei struct when ei is NULL. Hence,When ei->is_freed is set,return NULL directly.

Vendor	Product	Versions
Linux	Linux	affected `628adb842bd5e1c2c598534a7a022b8235289de6 - < 5ade5fbdbbb1f023bb70730ba4d74146c8bc7eb9` affected `8186fff7ab649085e2c60d032d9a20a85af1d87c - < 7a1b2d138189375ed1dcd7d0851118230221bd1d` affected `8186fff7ab649085e2c60d032d9a20a85af1d87c - < d4e9a968738bf66d3bb852dd5588d4c7afd6d7f4` affected `9c2ac5e0ea7899411fd900d4681890722a020735` affected `6.6.18 - < 6.6.34` +1 more versions
Linux	Linux	affected `6.8` unaffected `0 - < 6.8` unaffected `6.6.34 - <= 6.6.` unaffected `6.9.5 - <= 6.9.` unaffected `6.10 - <= *`

References

https://git.kernel.org/stable/c/5ade5fbdbbb1f023bb70730ba4d74146c8bc7eb9

https://git.kernel.org/stable/c/7a1b2d138189375ed1dcd7d0851118230221bd1d

https://git.kernel.org/stable/c/d4e9a968738bf66d3bb852dd5588d4c7afd6d7f4

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-39470

Description

Affected Products

References