CVE-2024-42079

Published: Jul 29, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix NULL pointer dereference in gfs2_log_flush In gfs2_jindex_free(), set sdp->sd_jdesc to NULL under the log flush lock to provide exclusion against gfs2_log_flush(). In gfs2_log_flush(), check if sdp->sd_jdesc is non-NULL before dereferencing it. Otherwise, we could run into a NULL pointer dereference when outstanding glock work races with an unmount (glock_work_func -> run_queue -> do_xmote -> inode_go_sync -> gfs2_log_flush).

Vendor	Product	Versions
Linux	Linux	affected `82218943058d5e3fe692a38b5a549479738dab33 - < c3c5cfa3170c0940bc66a142859caac07d19b9d6` affected `82218943058d5e3fe692a38b5a549479738dab33 - < 5f6a84cfb33b34610623857bd93919dcb661e29b` affected `82218943058d5e3fe692a38b5a549479738dab33 - < 3429ef5f50909cee9e498c50f0c499b9397116ce` affected `82218943058d5e3fe692a38b5a549479738dab33 - < f54f9d5368a4e92ede7dd078a62788dae3a7c6ef` affected `82218943058d5e3fe692a38b5a549479738dab33 - < 35264909e9d1973ab9aaa2a1b07cda70f12bb828`
Linux	Linux	affected `5.12` unaffected `0 - < 5.12` unaffected `5.15.200 - <= 5.15.` unaffected `6.1.162 - <= 6.1.` unaffected `6.6.37 - <= 6.6.*` +2 more versions

References

https://git.kernel.org/stable/c/c3c5cfa3170c0940bc66a142859caac07d19b9d6

https://git.kernel.org/stable/c/5f6a84cfb33b34610623857bd93919dcb661e29b

https://git.kernel.org/stable/c/3429ef5f50909cee9e498c50f0c499b9397116ce

https://git.kernel.org/stable/c/f54f9d5368a4e92ede7dd078a62788dae3a7c6ef

https://git.kernel.org/stable/c/35264909e9d1973ab9aaa2a1b07cda70f12bb828

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-42079

Description

Affected Products

References