CVE-2024-49988

Published: Oct 21, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: ksmbd: add refcnt to ksmbd_conn struct When sending an oplock break request, opinfo->conn is used, But freed ->conn can be used on multichannel. This patch add a reference count to the ksmbd_conn struct so that it can be freed when it is no longer used.

Vendor	Product	Versions
Linux	Linux	affected `0626e6641f6b467447c81dd7678a69c66f7746cf - < 18f06bacc197d4ac9b518ad1c69999bc3d83e7aa` affected `0626e6641f6b467447c81dd7678a69c66f7746cf - < 9fd3cde4628bcd3549ab95061f2bab74d2ed4f3b` affected `0626e6641f6b467447c81dd7678a69c66f7746cf - < e9dac92f4482a382e8c0fe1bc243da5fc3526b0c` affected `0626e6641f6b467447c81dd7678a69c66f7746cf - < ee426bfb9d09b29987369b897fe9b6485ac2be27`
Linux	Linux	affected `5.15` unaffected `0 - < 5.15` unaffected `6.6.55 - <= 6.6.` unaffected `6.10.14 - <= 6.10.` unaffected `6.11.3 - <= 6.11.*` +1 more versions

References

https://git.kernel.org/stable/c/18f06bacc197d4ac9b518ad1c69999bc3d83e7aa

https://git.kernel.org/stable/c/9fd3cde4628bcd3549ab95061f2bab74d2ed4f3b

https://git.kernel.org/stable/c/e9dac92f4482a382e8c0fe1bc243da5fc3526b0c

https://git.kernel.org/stable/c/ee426bfb9d09b29987369b897fe9b6485ac2be27

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-49988

Description

Affected Products

References