CVE-2024-46696

Published: Sep 13, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: nfsd: fix potential UAF in nfsd4_cb_getattr_release Once we drop the delegation reference, the fields embedded in it are no longer safe to access. Do that last.

Vendor	Product	Versions
Linux	Linux	affected `c5967721e1063648b0506481585ba7e2e49a075e - < e0b66698a5ae41078f7490e8b3527013f5fccd6c` affected `c5967721e1063648b0506481585ba7e2e49a075e - < 1116e0e372eb16dd907ec571ce5d4af325c55c10`
Linux	Linux	affected `6.9` unaffected `0 - < 6.9` unaffected `6.10.8 - <= 6.10.` unaffected `6.11 - <= `

References

https://git.kernel.org/stable/c/e0b66698a5ae41078f7490e8b3527013f5fccd6c

https://git.kernel.org/stable/c/1116e0e372eb16dd907ec571ce5d4af325c55c10

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-46696

Description

Affected Products

References