CVE-2024-40938

Source
https://nvd.nist.gov/vuln/detail/CVE-2024-40938
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-40938.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-40938
Downstream
Related
Published
2024-07-12T13:15:16Z
Modified
2025-08-09T19:01:26Z
Summary
[none]
Details

In the Linux kernel, the following vulnerability has been resolved:

landlock: Fix d_parent walk

The WARNONONCE() in collectdomainaccesses() can be triggered when trying to link a root mount point. This cannot work in practice because this directory is mounted, but the VFS check is done after the call to securitypathlink().

Do not use source directory's d_parent when the source directory is the mount point.

[mic: Fix commit message]

References

Affected packages