CVE-2024-39470

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2024-39470
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-39470.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-39470
Downstream
Related
Published
2024-06-25T14:28:56.258Z
Modified
2026-03-20T12:37:14.214594Z
Summary
eventfs: Fix a possible null pointer dereference in eventfs_find_events()
Details

In the Linux kernel, the following vulnerability has been resolved:

eventfs: Fix a possible null pointer dereference in eventfsfindevents()

In function eventfsfindevents,there is a potential null pointer that may be caused by calling updateeventsattr which will perform some operations on the members of the ei struct when ei is NULL.

Hence,When ei->is_freed is set,return NULL directly.

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/39xxx/CVE-2024-39470.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
628adb842bd5e1c2c598534a7a022b8235289de6
Fixed
5ade5fbdbbb1f023bb70730ba4d74146c8bc7eb9
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
8186fff7ab649085e2c60d032d9a20a85af1d87c
Fixed
7a1b2d138189375ed1dcd7d0851118230221bd1d
Fixed
d4e9a968738bf66d3bb852dd5588d4c7afd6d7f4
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
9c2ac5e0ea7899411fd900d4681890722a020735

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-39470.json"