CVE-2024-50204

Source
https://nvd.nist.gov/vuln/detail/CVE-2024-50204
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-50204.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-50204
Downstream
Related
Published
2024-11-08T06:07:55Z
Modified
2025-10-15T01:54:14.266733Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
fs: don't try and remove empty rbtree node
Details

In the Linux kernel, the following vulnerability has been resolved:

fs: don't try and remove empty rbtree node

When copying a namespace we won't have added the new copy into the namespace rbtree until after the copy succeeded. Calling freemntns() will try to remove the copy from the rbtree which is invalid. Simply free the namespace skeleton directly.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
1901c92497bd90caf608a474f1bf4d8795b372a2
Fixed
a8b155a2c30dc9a5ba837aa5fcba9a47cc031a9b
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
1901c92497bd90caf608a474f1bf4d8795b372a2
Fixed
229fd15908fe1f99b1de4cde3326e62d1e892611

Affected versions

v6.*

v6.10
v6.10-rc2
v6.10-rc3
v6.10-rc4
v6.10-rc5
v6.10-rc6
v6.10-rc7
v6.11
v6.11-rc1
v6.11-rc2
v6.11-rc3
v6.11-rc4
v6.11-rc5
v6.11-rc6
v6.11-rc7
v6.11.1
v6.11.2
v6.11.3
v6.11.4
v6.11.5
v6.12-rc1
v6.12-rc2

Database specific

{
    "vanir_signatures": [
        {
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a8b155a2c30dc9a5ba837aa5fcba9a47cc031a9b",
            "signature_type": "Function",
            "digest": {
                "function_hash": "53615903848517705416115669471579334818",
                "length": 1404.0
            },
            "id": "CVE-2024-50204-0d993c19",
            "target": {
                "file": "fs/namespace.c",
                "function": "copy_mnt_ns"
            },
            "deprecated": false,
            "signature_version": "v1"
        },
        {
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a8b155a2c30dc9a5ba837aa5fcba9a47cc031a9b",
            "signature_type": "Line",
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "63702388895089569031020369746168737011",
                    "312285267028071688313163138330705865097",
                    "300831688684823009835345319513291989375",
                    "239499260521653130519785344171272932795"
                ]
            },
            "id": "CVE-2024-50204-18784cea",
            "target": {
                "file": "fs/namespace.c"
            },
            "deprecated": false,
            "signature_version": "v1"
        },
        {
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@229fd15908fe1f99b1de4cde3326e62d1e892611",
            "signature_type": "Line",
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "63702388895089569031020369746168737011",
                    "312285267028071688313163138330705865097",
                    "300831688684823009835345319513291989375",
                    "239499260521653130519785344171272932795"
                ]
            },
            "id": "CVE-2024-50204-79a95145",
            "target": {
                "file": "fs/namespace.c"
            },
            "deprecated": false,
            "signature_version": "v1"
        },
        {
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@229fd15908fe1f99b1de4cde3326e62d1e892611",
            "signature_type": "Function",
            "digest": {
                "function_hash": "53615903848517705416115669471579334818",
                "length": 1404.0
            },
            "id": "CVE-2024-50204-8a7fd246",
            "target": {
                "file": "fs/namespace.c",
                "function": "copy_mnt_ns"
            },
            "deprecated": false,
            "signature_version": "v1"
        }
    ]
}

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.11.0
Fixed
6.11.6