CVE-2024-42078

Source
https://nvd.nist.gov/vuln/detail/CVE-2024-42078
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-42078.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-42078
Downstream
Published
2024-07-29T15:52:40Z
Modified
2025-10-15T13:12:55.728109Z
Summary
nfsd: initialise nfsd_info.mutex early.
Details

In the Linux kernel, the following vulnerability has been resolved:

nfsd: initialise nfsd_info.mutex early.

nfsdinfo.mutex can be dereferenced by svcpoolstatsstart() immediately after the new netns is created. Currently this can trigger an oops.

Move the initialisation earlier before it can possibly be dereferenced.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
7b207ccd983350a5dedd132b57c666186dd02a7c
Fixed
7e8b94045bc77ce4f085ddfb9eb04e5760e66169
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
7b207ccd983350a5dedd132b57c666186dd02a7c
Fixed
e0011bca603c101f2a3c007bdb77f7006fa78fb1

Affected versions

v6.*

v6.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5
v6.8-rc6
v6.8-rc7
v6.9
v6.9-rc1
v6.9-rc2
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7
v6.9.1
v6.9.2
v6.9.3
v6.9.4
v6.9.5
v6.9.6
v6.9.7

Database specific

{
    "vanir_signatures": [
        {
            "signature_version": "v1",
            "signature_type": "Function",
            "target": {
                "file": "fs/nfsd/nfssvc.c",
                "function": "nfsd_create_serv"
            },
            "deprecated": false,
            "digest": {
                "length": 882.0,
                "function_hash": "264688803469564036030741267557082164108"
            },
            "id": "CVE-2024-42078-055dfac7",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e0011bca603c101f2a3c007bdb77f7006fa78fb1"
        },
        {
            "signature_version": "v1",
            "signature_type": "Line",
            "target": {
                "file": "fs/nfsd/nfssvc.c"
            },
            "deprecated": false,
            "digest": {
                "line_hashes": [
                    "157019310429110050184667232500877829305",
                    "79444557225163903476979520065850967721",
                    "271516439795043208963786990021588521698",
                    "89466589030249813646167480295865391316"
                ],
                "threshold": 0.9
            },
            "id": "CVE-2024-42078-294a3471",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7e8b94045bc77ce4f085ddfb9eb04e5760e66169"
        },
        {
            "signature_version": "v1",
            "signature_type": "Function",
            "target": {
                "file": "fs/nfsd/nfssvc.c",
                "function": "nfsd_create_serv"
            },
            "deprecated": false,
            "digest": {
                "length": 882.0,
                "function_hash": "264688803469564036030741267557082164108"
            },
            "id": "CVE-2024-42078-2ecc57ff",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7e8b94045bc77ce4f085ddfb9eb04e5760e66169"
        },
        {
            "signature_version": "v1",
            "signature_type": "Line",
            "target": {
                "file": "fs/nfsd/nfsctl.c"
            },
            "deprecated": false,
            "digest": {
                "line_hashes": [
                    "312322892415122746493396719396879700364",
                    "115779118510788600918109125543201562993",
                    "87599185917662732487465816360867493665",
                    "41994084309485617209175384043478329981"
                ],
                "threshold": 0.9
            },
            "id": "CVE-2024-42078-3343663b",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7e8b94045bc77ce4f085ddfb9eb04e5760e66169"
        },
        {
            "signature_version": "v1",
            "signature_type": "Function",
            "target": {
                "file": "fs/nfsd/nfsctl.c",
                "function": "nfsd_net_init"
            },
            "deprecated": false,
            "digest": {
                "length": 752.0,
                "function_hash": "252379834722876433204326843741165498691"
            },
            "id": "CVE-2024-42078-5f7a410d",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7e8b94045bc77ce4f085ddfb9eb04e5760e66169"
        },
        {
            "signature_version": "v1",
            "signature_type": "Function",
            "target": {
                "file": "fs/nfsd/nfsctl.c",
                "function": "nfsd_net_init"
            },
            "deprecated": false,
            "digest": {
                "length": 806.0,
                "function_hash": "265078352255384215765190415793118281707"
            },
            "id": "CVE-2024-42078-7adae8b4",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e0011bca603c101f2a3c007bdb77f7006fa78fb1"
        },
        {
            "signature_version": "v1",
            "signature_type": "Line",
            "target": {
                "file": "fs/nfsd/nfssvc.c"
            },
            "deprecated": false,
            "digest": {
                "line_hashes": [
                    "157019310429110050184667232500877829305",
                    "79444557225163903476979520065850967721",
                    "271516439795043208963786990021588521698",
                    "89466589030249813646167480295865391316"
                ],
                "threshold": 0.9
            },
            "id": "CVE-2024-42078-a2f006cc",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e0011bca603c101f2a3c007bdb77f7006fa78fb1"
        },
        {
            "signature_version": "v1",
            "signature_type": "Line",
            "target": {
                "file": "fs/nfsd/nfsctl.c"
            },
            "deprecated": false,
            "digest": {
                "line_hashes": [
                    "312322892415122746493396719396879700364",
                    "115779118510788600918109125543201562993",
                    "87599185917662732487465816360867493665",
                    "41994084309485617209175384043478329981"
                ],
                "threshold": 0.9
            },
            "id": "CVE-2024-42078-c79cfc89",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e0011bca603c101f2a3c007bdb77f7006fa78fb1"
        }
    ]
}

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.8.0
Fixed
6.9.8