CVE-2024-56564
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-56564
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-56564.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-56564
- Downstream
- Related
- Published
- 2024-12-27T14:23:08.563Z
- Modified
- 2025-12-01T21:09:35.417272Z
- Summary
- ceph: pass cred pointer to ceph_mds_auth_match()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
ceph: pass cred pointer to cephmdsauth_match()
This eliminates a redundant getcurrentcred() call, because cephmdscheck_access() has already obtained this pointer.
As a side effect, this also fixes a reference leak in cephmdsauthmatch(): by omitting the getcurrent_cred() call, no additional cred reference is taken.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/56xxx/CVE-2024-56564.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/23426309a4064b25a961e1c72961d8bfc7c8c990
- https://git.kernel.org/stable/c/ffa6ba7bdb7f07f49c9e9150b0176df066520f62
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/56xxx/CVE-2024-56564.json
- https://nvd.nist.gov/vuln/detail/CVE-2024-56564