U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

CVE-2024-41020 Detail

Description

In the Linux kernel, the following vulnerability has been resolved: filelock: Fix fcntl/close race recovery compat path When I wrote commit 3cad1bc01041 ("filelock: Remove locks reliably when fcntl/close race is detected"), I missed that there are two copies of the code I was patching: The normal version, and the version for 64-bit offsets on 32-bit kernels. Thanks to Greg KH for stumbling over this while doing the stable backport... Apply exactly the same fix to the compat path for 32-bit kernels.


Metrics

NVD enrichment efforts reference publicly available information to associate vector strings. CVSS information contributed by other sources is also displayed.
CVSS 4.0 Severity and Vector Strings:

NIST CVSS score
NIST: NVD
N/A
NVD assessment not yet provided.

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

Hyperlink Resource
https://git.kernel.org/stable/c/4c43ad4ab41602201d34c66ac62130fe339d686f
https://git.kernel.org/stable/c/4c43ad4ab41602201d34c66ac62130fe339d686f
https://git.kernel.org/stable/c/53e21cfa68a7d12de378b7116c75571f73e0dfa2
https://git.kernel.org/stable/c/53e21cfa68a7d12de378b7116c75571f73e0dfa2
https://git.kernel.org/stable/c/5b0af8e4c70e4b884bb94ff5f0cd49ecf1273c02
https://git.kernel.org/stable/c/5b0af8e4c70e4b884bb94ff5f0cd49ecf1273c02
https://git.kernel.org/stable/c/73ae349534ebc377328e7d21891e589626c6e82c
https://git.kernel.org/stable/c/73ae349534ebc377328e7d21891e589626c6e82c
https://git.kernel.org/stable/c/911cc83e56a2de5a40758766c6a70d6998248860
https://git.kernel.org/stable/c/911cc83e56a2de5a40758766c6a70d6998248860
https://git.kernel.org/stable/c/a561145f3ae973ebf3e0aee41624e92a6c5cb38d
https://git.kernel.org/stable/c/a561145f3ae973ebf3e0aee41624e92a6c5cb38d
https://git.kernel.org/stable/c/ed898f9ca3fa32c56c858b463ceb9d9936cc69c4
https://git.kernel.org/stable/c/ed898f9ca3fa32c56c858b463ceb9d9936cc69c4
https://git.kernel.org/stable/c/f4d0775c6e2f1340ca0725f0337de149aaa989ca
https://git.kernel.org/stable/c/f4d0775c6e2f1340ca0725f0337de149aaa989ca
https://git.kernel.org/stable/c/f8138f2ad2f745b9a1c696a05b749eabe44337ea
https://git.kernel.org/stable/c/f8138f2ad2f745b9a1c696a05b749eabe44337ea

Weakness Enumeration

CWE-ID CWE Name Source

Change History

2 change records found show changes

Quick Info

CVE Dictionary Entry:
CVE-2024-41020
NVD Published Date:
07/29/2024
NVD Last Modified:
11/21/2024
Source:
kernel.org