CVE-2024-42250
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-42250
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-42250.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-42250
- Downstream
- Related
- Published
- 2024-08-07T15:14:33Z
- Modified
- 2025-10-17T09:52:25.360777Z
- Summary
- cachefiles: add missing lock protection when polling
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
cachefiles: add missing lock protection when polling
Add missing lock protection in poll routine when iterating xarray, otherwise:
Even with RCU read lock held, only the slot of the radix tree is ensured to be pinned there, while the data structure (e.g. struct cachefilesreq) stored in the slot has no such guarantee. The poll routine will iterate the radix tree and dereference cachefilesreq accordingly. Thus RCU read lock is not adequate in this case and spinlock is needed here.
- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/6bb6bd3dd6f382dfd36220d4b210a0c77c066651
- https://git.kernel.org/stable/c/8eadcab7f3dd809edbe5ae20533ff843dfea3a07
- https://git.kernel.org/stable/c/97cfd5e20ddc2e33e16ce369626ce76c9a475fd7
- https://git.kernel.org/stable/c/cf5bb09e742a9cf6349127e868329a8f69b7a014
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced0e19a18f998dcabe8be590e0b39660a1f230209bFixed97cfd5e20ddc2e33e16ce369626ce76c9a475fd7
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced18943864342705fa18dd4e6b8d608491fec81f6eFixed6bb6bd3dd6f382dfd36220d4b210a0c77c066651
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedb817e22b2e91257ace32a6768c3c003faeaa1c5cFixed8eadcab7f3dd809edbe5ae20533ff843dfea3a07
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedb817e22b2e91257ace32a6768c3c003faeaa1c5cFixedcf5bb09e742a9cf6349127e868329a8f69b7a014
Affected versions
v6.*
v6.10-rc1
v6.7
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5
v6.8-rc6
v6.8-rc7
v6.9
v6.9-rc1
v6.9-rc2
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7
v6.9.1
v6.9.2
v6.9.3
v6.9.4
v6.9.5
v6.9.6
v6.9.7
v6.9.8
v6.9.9
Database specific
vanir_signatures
[
{
"signature_type": "Function",
"digest": {
"length": 627.0,
"function_hash": "184878244861387888212726926252414010998"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@97cfd5e20ddc2e33e16ce369626ce76c9a475fd7",
"deprecated": false,
"id": "CVE-2024-42250-1b1821f1",
"signature_version": "v1",
"target": {
"function": "cachefiles_daemon_poll",
"file": "fs/cachefiles/daemon.c"
}
},
{
"signature_type": "Line",
"digest": {
"line_hashes": [
"258835126067175397730063057424968110445",
"3574436359704013495933327538075631530",
"19936587161347021427804735502645196088",
"184107991978088605270294693174711088148",
"265765753249641935423700865154876703677",
"141352027017395034192714273985399530552",
"132474494111937191044628153479474036800",
"258344850940093665697340177530525600461",
"290744507104262420270796076140540387435",
"123758450875303918757563639152466004524",
"217041490440590518286123344618665552142"
],
"threshold": 0.9
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@97cfd5e20ddc2e33e16ce369626ce76c9a475fd7",
"deprecated": false,
"id": "CVE-2024-42250-1dca31c3",
"signature_version": "v1",
"target": {
"file": "fs/cachefiles/daemon.c"
}
},
{
"signature_type": "Line",
"digest": {
"line_hashes": [
"258835126067175397730063057424968110445",
"3574436359704013495933327538075631530",
"19936587161347021427804735502645196088",
"184107991978088605270294693174711088148",
"265765753249641935423700865154876703677",
"141352027017395034192714273985399530552",
"132474494111937191044628153479474036800",
"258344850940093665697340177530525600461",
"290744507104262420270796076140540387435",
"123758450875303918757563639152466004524",
"217041490440590518286123344618665552142"
],
"threshold": 0.9
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@cf5bb09e742a9cf6349127e868329a8f69b7a014",
"deprecated": false,
"id": "CVE-2024-42250-2aaf5160",
"signature_version": "v1",
"target": {
"file": "fs/cachefiles/daemon.c"
}
},
{
"signature_type": "Function",
"digest": {
"length": 627.0,
"function_hash": "184878244861387888212726926252414010998"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8eadcab7f3dd809edbe5ae20533ff843dfea3a07",
"deprecated": false,
"id": "CVE-2024-42250-3a042219",
"signature_version": "v1",
"target": {
"function": "cachefiles_daemon_poll",
"file": "fs/cachefiles/daemon.c"
}
},
{
"signature_type": "Function",
"digest": {
"length": 627.0,
"function_hash": "184878244861387888212726926252414010998"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@6bb6bd3dd6f382dfd36220d4b210a0c77c066651",
"deprecated": false,
"id": "CVE-2024-42250-4f1f283c",
"signature_version": "v1",
"target": {
"function": "cachefiles_daemon_poll",
"file": "fs/cachefiles/daemon.c"
}
},
{
"signature_type": "Line",
"digest": {
"line_hashes": [
"258835126067175397730063057424968110445",
"3574436359704013495933327538075631530",
"19936587161347021427804735502645196088",
"184107991978088605270294693174711088148",
"265765753249641935423700865154876703677",
"141352027017395034192714273985399530552",
"132474494111937191044628153479474036800",
"258344850940093665697340177530525600461",
"290744507104262420270796076140540387435",
"123758450875303918757563639152466004524",
"217041490440590518286123344618665552142"
],
"threshold": 0.9
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@6bb6bd3dd6f382dfd36220d4b210a0c77c066651",
"deprecated": false,
"id": "CVE-2024-42250-afc6addd",
"signature_version": "v1",
"target": {
"file": "fs/cachefiles/daemon.c"
}
},
{
"signature_type": "Line",
"digest": {
"line_hashes": [
"258835126067175397730063057424968110445",
"3574436359704013495933327538075631530",
"19936587161347021427804735502645196088",
"184107991978088605270294693174711088148",
"265765753249641935423700865154876703677",
"141352027017395034192714273985399530552",
"132474494111937191044628153479474036800",
"258344850940093665697340177530525600461",
"290744507104262420270796076140540387435",
"123758450875303918757563639152466004524",
"217041490440590518286123344618665552142"
],
"threshold": 0.9
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8eadcab7f3dd809edbe5ae20533ff843dfea3a07",
"deprecated": false,
"id": "CVE-2024-42250-b6cde281",
"signature_version": "v1",
"target": {
"file": "fs/cachefiles/daemon.c"
}
},
{
"signature_type": "Function",
"digest": {
"length": 627.0,
"function_hash": "184878244861387888212726926252414010998"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@cf5bb09e742a9cf6349127e868329a8f69b7a014",
"deprecated": false,
"id": "CVE-2024-42250-c5d0a064",
"signature_version": "v1",
"target": {
"function": "cachefiles_daemon_poll",
"file": "fs/cachefiles/daemon.c"
}
}
]