CVE-2024-46742
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-46742
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-46742.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2024-46742
- Downstream
- Related
- Published
- 2024-09-18T08:15:03Z
- Modified
- 2025-08-09T19:01:28Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
smb/server: fix potential null-ptr-deref of leasectxinfo in smb2_open()
null-ptr-deref will occur when (reqoplevel == SMB2OPLOCKLEVELLEASE) and parselease_state() return NULL.
Fix this by check if 'leasectxinfo' is NULL.
Additionally, remove the redundant parentheses in parsedurablehandle_context().
- References
-
- https://git.kernel.org/stable/c/07f384c5be1f8633b13f0a22616e227570450bc6
- https://git.kernel.org/stable/c/3b692794b81f2ecad69a4adbba687f3836824ada
- https://git.kernel.org/stable/c/4e8771a3666c8f216eefd6bd2fd50121c6c437db
- https://git.kernel.org/stable/c/878f32878351104448b86ef5b85d1f8ed6f599fb
- https://git.kernel.org/stable/c/ec28c35029b7930f31117f9284874b63bea4f31b