CVE-2024-53136

mm: revert "mm: shmem: fix data-race in shmem_getattr()"

Severity Score

4.7

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved: mm: revert "mm: shmem: fix data-race in shmem_getattr()" Revert d949d1d14fa2 ("mm: shmem: fix data-race in shmem_getattr()") as
suggested by Chuck [1]. It is causing deadlocks when accessing tmpfs over
NFS. As Hugh commented, "added just to silence a syzbot sanitizer splat: added
where there has never been any practical problem".

En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: mm: revert "mm: shmem: fix data-race in shmem_getattr()" Revert d949d1d14fa2 ("mm: shmem: fix data-race in shmem_getattr()") como lo sugirió Chuck [1]. Está causando bloqueos al acceder a tmpfs a través de NFS. Como comentó Hugh, "agregado solo para silenciar un splat de sanitizador de syzbot: agregado donde nunca ha habido ningún problema práctico".

In the Linux kernel, the following vulnerability has been resolved: mm: revert "mm: shmem: fix data-race in shmem_getattr()" Revert d949d1d14fa2 ("mm: shmem: fix data-race in shmem_getattr()") as suggested by Chuck [1]. It is causing deadlocks when accessing tmpfs over NFS. As Hugh commented, "added just to silence a syzbot sanitizer splat: added where there has never been any practical problem".

Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Attila Szász discovered that the HFS+ file system implementation in the Linux Kernel contained a heap overflow vulnerability. An attacker could use a specially crafted file system image that, when mounted, could cause a denial of service or possibly execute arbitrary code.

*Credits: N/A

Attack Vector

Local

Attack Complexity

High

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Attack Vector

Local

Attack Complexity

High

Authentication

Single

Confidentiality

None

Integrity

None

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2024-11-19 CVE Reserved
2024-12-04 CVE Published
2025-05-04 CVE Updated
2025-05-14 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

CAPEC

References (17)

URL	Tag	Source
https://git.kernel.org/stable/c/9fb9703cd43ee20a6de8ccdef991677b7274cec0	Vuln. Introduced
https://git.kernel.org/stable/c/7cc30ada84323be19395094d567579536e0d187e	Vuln. Introduced
https://git.kernel.org/stable/c/bda1a99a0dd644f31a87d636ac624eeb975cb65a	Vuln. Introduced
https://git.kernel.org/stable/c/3d9528484480e8f4979b3a347930ed383be99f89	Vuln. Introduced
https://git.kernel.org/stable/c/82cae1e30bd940253593c2d4f16d88343d1358f4	Vuln. Introduced
https://git.kernel.org/stable/c/edd1f905050686fdc4cfe233d818469fdf7d5ff8	Vuln. Introduced
https://git.kernel.org/stable/c/ffd56612566bc23877c8f45def2801f3324a222a	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/36b537e8f302f670c7cf35d88a3a294443e32d52	2024-12-05
https://git.kernel.org/stable/c/a3c65022d89d5baa2cea8e87a6de983ea305f14c	2024-12-14
https://git.kernel.org/stable/c/57cc8d253099d1b8627f0fb487ee011d9158ccc9	2024-12-14
https://git.kernel.org/stable/c/d3f9d88c2c03b2646ace336236adca19f7697bd3	2024-12-14
https://git.kernel.org/stable/c/5874c1150e77296565ad6e495ef41fbf87570d14	2024-11-22
https://git.kernel.org/stable/c/64e67e8694252c1bf01b802ee911be3fee62c36b	2024-11-22
https://git.kernel.org/stable/c/901dc2ad7c3789fa87dc3956f6697c5d62d5cf7e	2024-11-22
https://git.kernel.org/stable/c/d1aa0c04294e29883d65eac6c2f72fe95cc7c049	2024-11-16

URL	Date	SRC
https://access.redhat.com/security/cve/CVE-2024-53136	2025-05-13
https://bugzilla.redhat.com/show_bug.cgi?id=2330346	2025-05-13

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.19.323 < 4.19.325 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.19.323 < 4.19.325"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.4.285 < 5.4.287 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.4.285 < 5.4.287"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.10.229 < 5.10.231 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.10.229 < 5.10.231"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.15.171 < 5.15.174 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.15.171 < 5.15.174"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.1.116 < 6.1.119 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.1.116 < 6.1.119"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.6.60 < 6.6.63 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.6.60 < 6.6.63"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.11.7 < 6.11.10 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.11.7 < 6.11.10"		en		Affected