CVE-2024-42078
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-42078
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-42078.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2024-42078
- Downstream
- Published
- 2024-07-29T16:15:07Z
- Modified
- 2025-08-09T19:01:28Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
nfsd: initialise nfsd_info.mutex early.
nfsdinfo.mutex can be dereferenced by svcpoolstatsstart() immediately after the new netns is created. Currently this can trigger an oops.
Move the initialisation earlier before it can possibly be dereferenced.
- References