In the Linux kernel, the following vulnerability has been resolved:
NFSD: Prevent NULL dereference in nfsd4processcb_update()
@ses is initialized to NULL. If _nfsd4findbackchannel() finds no available backchannel session, setupcallback_client() will try to dereference @ses and segfault.
[ { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c5d90f9302742985a5078e42ac38de42c364c44a", "target": { "function": "nfsd4_process_cb_update", "file": "fs/nfsd/nfs4callback.c" }, "signature_version": "v1", "deprecated": false, "signature_type": "Function", "digest": { "function_hash": "102099946615391371360066142389638561240", "length": 997.0 }, "id": "CVE-2024-53217-027dbb86" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d9a0d1f6e15859ea7a86a327f28491e23deaaa62", "target": { "file": "fs/nfsd/nfs4callback.c" }, "signature_version": "v1", "deprecated": false, "signature_type": "Line", "digest": { "line_hashes": [ "31052924344114353414932402071072310374", "170774473135662711514849529967715334141", "110572066548561217731155461460779830307", "162592903211723373875119740234703493110" ], "threshold": 0.9 }, "id": "CVE-2024-53217-053df953" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d9a0d1f6e15859ea7a86a327f28491e23deaaa62", "target": { "function": "nfsd4_process_cb_update", "file": "fs/nfsd/nfs4callback.c" }, "signature_version": "v1", "deprecated": false, "signature_type": "Function", "digest": { "function_hash": "102099946615391371360066142389638561240", "length": 997.0 }, "id": "CVE-2024-53217-121c6b76" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@1e02c641c3a43c88cecc08402000418e15578d38", "target": { "function": "nfsd4_process_cb_update", "file": "fs/nfsd/nfs4callback.c" }, "signature_version": "v1", "deprecated": false, "signature_type": "Function", "digest": { "function_hash": "65848670805217667456421821995011667542", "length": 1045.0 }, "id": "CVE-2024-53217-1ba9b397" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4a4ffc1aa9d618e41ad9151f40966e402e58a5a2", "target": { "file": "fs/nfsd/nfs4callback.c" }, "signature_version": "v1", "deprecated": false, "signature_type": "Line", "digest": { "line_hashes": [ "31052924344114353414932402071072310374", "170774473135662711514849529967715334141", "110572066548561217731155461460779830307", "278964024127058929074654096330172944938" ], "threshold": 0.9 }, "id": "CVE-2024-53217-2f2f0030" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@752a75811f27300fe8131b0a1efc91960f6f88e7", "target": { "function": "nfsd4_process_cb_update", "file": "fs/nfsd/nfs4callback.c" }, "signature_version": "v1", "deprecated": false, "signature_type": "Function", "digest": { "function_hash": "102099946615391371360066142389638561240", "length": 997.0 }, "id": "CVE-2024-53217-4bb01899" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0c3b0e326f838787d229314d4de83af9c53347e8", "target": { "file": "fs/nfsd/nfs4callback.c" }, "signature_version": "v1", "deprecated": false, "signature_type": "Line", "digest": { "line_hashes": [ "31052924344114353414932402071072310374", "170774473135662711514849529967715334141", "110572066548561217731155461460779830307", "162592903211723373875119740234703493110" ], "threshold": 0.9 }, "id": "CVE-2024-53217-53dfbf10" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c5d90f9302742985a5078e42ac38de42c364c44a", "target": { "file": "fs/nfsd/nfs4callback.c" }, "signature_version": "v1", "deprecated": false, "signature_type": "Line", "digest": { "line_hashes": [ "31052924344114353414932402071072310374", "170774473135662711514849529967715334141", "110572066548561217731155461460779830307", "162592903211723373875119740234703493110" ], "threshold": 0.9 }, "id": "CVE-2024-53217-5b3a0b19" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4a4ffc1aa9d618e41ad9151f40966e402e58a5a2", "target": { "function": "nfsd4_process_cb_update", "file": "fs/nfsd/nfs4callback.c" }, "signature_version": "v1", "deprecated": false, "signature_type": "Function", "digest": { "function_hash": "65848670805217667456421821995011667542", "length": 1045.0 }, "id": "CVE-2024-53217-70c530ae" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@1e02c641c3a43c88cecc08402000418e15578d38", "target": { "file": "fs/nfsd/nfs4callback.c" }, "signature_version": "v1", "deprecated": false, "signature_type": "Line", "digest": { "line_hashes": [ "31052924344114353414932402071072310374", "170774473135662711514849529967715334141", "110572066548561217731155461460779830307", "278964024127058929074654096330172944938" ], "threshold": 0.9 }, "id": "CVE-2024-53217-7f1d45ac" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@cac1405e3ff6685a438e910ad719e0cf06af90ee", "target": { "function": "nfsd4_process_cb_update", "file": "fs/nfsd/nfs4callback.c" }, "signature_version": "v1", "deprecated": false, "signature_type": "Function", "digest": { "function_hash": "102099946615391371360066142389638561240", "length": 997.0 }, "id": "CVE-2024-53217-8a143edc" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@752a75811f27300fe8131b0a1efc91960f6f88e7", "target": { "file": "fs/nfsd/nfs4callback.c" }, "signature_version": "v1", "deprecated": false, "signature_type": "Line", "digest": { "line_hashes": [ "31052924344114353414932402071072310374", "170774473135662711514849529967715334141", "110572066548561217731155461460779830307", "162592903211723373875119740234703493110" ], "threshold": 0.9 }, "id": "CVE-2024-53217-96deb0f5" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@03178cd8f67227015debb700123987fe96275cd1", "target": { "function": "nfsd4_process_cb_update", "file": "fs/nfsd/nfs4callback.c" }, "signature_version": "v1", "deprecated": false, "signature_type": "Function", "digest": { "function_hash": "65848670805217667456421821995011667542", "length": 1045.0 }, "id": "CVE-2024-53217-af477504" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@03178cd8f67227015debb700123987fe96275cd1", "target": { "file": "fs/nfsd/nfs4callback.c" }, "signature_version": "v1", "deprecated": false, "signature_type": "Line", "digest": { "line_hashes": [ "31052924344114353414932402071072310374", "170774473135662711514849529967715334141", "110572066548561217731155461460779830307", "278964024127058929074654096330172944938" ], "threshold": 0.9 }, "id": "CVE-2024-53217-c204ec51" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@eb51733ae5fc73d95bd857d5da26f9f65b202a79", "target": { "file": "fs/nfsd/nfs4callback.c" }, "signature_version": "v1", "deprecated": false, "signature_type": "Line", "digest": { "line_hashes": [ "31052924344114353414932402071072310374", "170774473135662711514849529967715334141", "110572066548561217731155461460779830307", "162592903211723373875119740234703493110" ], "threshold": 0.9 }, "id": "CVE-2024-53217-c2144fc9" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@eb51733ae5fc73d95bd857d5da26f9f65b202a79", "target": { "function": "nfsd4_process_cb_update", "file": "fs/nfsd/nfs4callback.c" }, "signature_version": "v1", "deprecated": false, "signature_type": "Function", "digest": { "function_hash": "102099946615391371360066142389638561240", "length": 997.0 }, "id": "CVE-2024-53217-e788064e" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0c3b0e326f838787d229314d4de83af9c53347e8", "target": { "function": "nfsd4_process_cb_update", "file": "fs/nfsd/nfs4callback.c" }, "signature_version": "v1", "deprecated": false, "signature_type": "Function", "digest": { "function_hash": "102099946615391371360066142389638561240", "length": 997.0 }, "id": "CVE-2024-53217-f58a1fee" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@cac1405e3ff6685a438e910ad719e0cf06af90ee", "target": { "file": "fs/nfsd/nfs4callback.c" }, "signature_version": "v1", "deprecated": false, "signature_type": "Line", "digest": { "line_hashes": [ "31052924344114353414932402071072310374", "170774473135662711514849529967715334141", "110572066548561217731155461460779830307", "162592903211723373875119740234703493110" ], "threshold": 0.9 }, "id": "CVE-2024-53217-facdfef8" } ]