CVE-2024-46736

Published: Sep 18, 2024

Modified: May 23, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix double put of @cfile in smb2_rename_path() If smb2_set_path_attr() is called with a valid @cfile and returned -EINVAL, we need to call cifs_get_writable_path() again as the reference of @cfile was already dropped by previous smb2_compound_op() call.

Vendor	Product	Versions
Linux	Linux	affected `1e60bc0e954389af82f1d9a85f13a63f6572350f - < b27ea9c96efd2c252a981fb00d0f001b86c90f3e` affected `71f15c90e785d1de4bcd65a279e7256684c25c0d - < 1a46c7f6546b73cbf36f5a618a1a6bbb45391eb3` affected `71f15c90e785d1de4bcd65a279e7256684c25c0d - < 3523a3df03c6f04f7ea9c2e7050102657e331a4f` affected `6.6.32 - < 6.6.51`
Linux	Linux	affected `6.9` unaffected `0 - < 6.9` unaffected `6.6.51 - <= 6.6.` unaffected `6.10.10 - <= 6.10.` unaffected `6.11 - <= *`

References

https://git.kernel.org/stable/c/b27ea9c96efd2c252a981fb00d0f001b86c90f3e

https://git.kernel.org/stable/c/1a46c7f6546b73cbf36f5a618a1a6bbb45391eb3

https://git.kernel.org/stable/c/3523a3df03c6f04f7ea9c2e7050102657e331a4f

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-46736

Description

Affected Products

References