CVE-2024-56558

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2024-56558

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-56558.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2024-56558

Downstream

BELL-CVE-2024-56558

DEBIAN-CVE-2024-56558

DLA-4075-1

DLA-4076-1

OESA-2025-1286

OESA-2025-1450

OESA-2025-2118

OESA-2025-2119

RHSA-2025:6966

SUSE-SU-2025:01918-1

SUSE-SU-2025:01966-1

SUSE-SU-2025:01982-1

SUSE-SU-2025:01995-1

SUSE-SU-2025:02173-1

SUSE-SU-2025:02262-1

SUSE-SU-2025:02387-1

SUSE-SU-2025:02388-1

SUSE-SU-2025:02389-1

SUSE-SU-2025:02390-1

SUSE-SU-2025:02398-1

SUSE-SU-2025:02399-1

SUSE-SU-2025:02400-1

SUSE-SU-2025:02401-1

SUSE-SU-2025:02403-1

SUSE-SU-2025:02410-1

SUSE-SU-2025:02411-1

SUSE-SU-2025:02412-1

SUSE-SU-2025:02416-1

SUSE-SU-2025:02418-1

SUSE-SU-2025:02419-1

SUSE-SU-2025:02420-1

SUSE-SU-2025:02428-1

SUSE-SU-2025:02433-1

SUSE-SU-2025:02434-1

SUSE-SU-2025:02436-1

SUSE-SU-2025:02440-1

SUSE-SU-2025:02444-1

SUSE-SU-2025:02445-1

SUSE-SU-2025:02446-1

SUSE-SU-2025:02449-1

SUSE-SU-2025:02451-1

SUSE-SU-2025:02454-1

SUSE-SU-2025:02455-1

SUSE-SU-2025:02456-1

SUSE-SU-2025:02459-1

SUSE-SU-2025:02467-1

SUSE-SU-2025:02468-1

SUSE-SU-2025:02469-1

SUSE-SU-2025:02470-1

SUSE-SU-2025:0289-1

SUSE-SU-2025:0428-1

SUSE-SU-2025:0499-1

SUSE-SU-2025:0556-1

SUSE-SU-2025:0557-1

SUSE-SU-2025:0577-1

SUSE-SU-2025:0577-2

SUSE-SU-2025:20165-1

SUSE-SU-2025:20166-1

SUSE-SU-2025:20248-1

SUSE-SU-2025:20249-1

SUSE-SU-2025:20517-1

SUSE-SU-2025:20518-1

SUSE-SU-2025:20519-1

SUSE-SU-2025:20525-1

SUSE-SU-2025:20526-1

SUSE-SU-2025:20527-1

SUSE-SU-2025:20540-1

SUSE-SU-2025:20541-1

SUSE-SU-2025:20544-1

SUSE-SU-2025:20545-1

Related

Published

2024-12-27T14:23:03.902Z

Modified

2026-03-20T12:39:50.538861Z

Severity

7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

nfsd: make sure exp active before svc_export_show

Details

In the Linux kernel, the following vulnerability has been resolved:

nfsd: make sure exp active before svcexportshow

The function e_show was called with protection from RCU. This only ensures that exp will not be freed. Therefore, the reference count for exp can drop to zero, which will trigger a refcount use-after-free warning when exp_get is called. To resolve this issue, use cache_get_rcu to ensure that exp remains active.

------------[ cut here ]------------ refcountt: addition on 0; use-after-free. WARNING: CPU: 3 PID: 819 at lib/refcount.c:25 refcountwarnsaturate+0xb1/0x120 CPU: 3 UID: 0 PID: 819 Comm: cat Not tainted 6.12.0-rc3+ #1 Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.1-2.fc37 04/01/2014 RIP: 0010:refcountwarnsaturate+0xb1/0x120 ... Call Trace: <TASK> eshow+0x20b/0x230 [nfsd] seqreaditer+0x589/0x770 seqread+0x1e5/0x270 vfsread+0x125/0x530 ksysread+0xc1/0x160 dosyscall64+0x5f/0x170 entrySYSCALL64after_hwframe+0x76/0x7e

Database specific

{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/56xxx/CVE-2024-56558.json"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

bf18f163e89c52e09c96534db45c4274273a0b34

Fixed

e2fa0d0e327279a8defb87b263cd0bf288fd9261

Fixed

7fd29d284b55c2274f7a748e6c5f25b4758b8da5

Fixed

6cefcadd34e3c71c81ea64b899a0daa86314a51a

Fixed

7d8f7816bebcd2e7400bb4d786eccb8f33c9f9ec

Fixed

1cecfdbc6bfc89c516d286884c7f29267b95de2b

Fixed

7365d1f8de63cffdbbaa2287ce0205438e1a922f

Fixed

be8f982c369c965faffa198b46060f8853e0f1f0

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-56558.json"