CVE-2024-40938

Published: Jul 12, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: landlock: Fix d_parent walk The WARN_ON_ONCE() in collect_domain_accesses() can be triggered when trying to link a root mount point. This cannot work in practice because this directory is mounted, but the VFS check is done after the call to security_path_link(). Do not use source directory's d_parent when the source directory is the mount point. [mic: Fix commit message]

Vendor	Product	Versions
Linux	Linux	affected `b91c3e4ea756b12b7d992529226edce1cfd854d7 - < b6e5e696435832b33e40775f060ef5c95f4fda1f` affected `b91c3e4ea756b12b7d992529226edce1cfd854d7 - < cc30d05b34f9a087a6928d09b131f7b491e9ab11` affected `b91c3e4ea756b12b7d992529226edce1cfd854d7 - < c7618c7b0b8c45bcef34410cc1d1e953eb17f8f6` affected `b91c3e4ea756b12b7d992529226edce1cfd854d7 - < 88da52ccd66e65f2e63a6c35c9dff55d448ef4dc`
Linux	Linux	affected `5.19` unaffected `0 - < 5.19` unaffected `6.1.95 - <= 6.1.` unaffected `6.6.35 - <= 6.6.` unaffected `6.9.6 - <= 6.9.*` +1 more versions

References

https://git.kernel.org/stable/c/b6e5e696435832b33e40775f060ef5c95f4fda1f

https://git.kernel.org/stable/c/cc30d05b34f9a087a6928d09b131f7b491e9ab11

https://git.kernel.org/stable/c/c7618c7b0b8c45bcef34410cc1d1e953eb17f8f6

https://git.kernel.org/stable/c/88da52ccd66e65f2e63a6c35c9dff55d448ef4dc

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-40938

Description

Affected Products

References