CVE-2024-58087

Source
https://cve.org/CVERecord?id=CVE-2024-58087
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-58087.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-58087
Downstream
Related
Published
2025-03-12T07:28:09.114Z
Modified
2026-06-18T03:57:14.081022714Z
Severity
  • 8.1 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
ksmbd: fix racy issue from session lookup and expire
Details

In the Linux kernel, the following vulnerability has been resolved:

ksmbd: fix racy issue from session lookup and expire

Increment the session reference count within the lock for lookup to avoid racy issue with session expire.

Database specific
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/58xxx/CVE-2024-58087.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
0626e6641f6b467447c81dd7678a69c66f7746cf
Fixed
2107ab40629aeabbec369cf34b8cf0f288c3eb1b
Fixed
37a0e2b362b3150317fb6e2139de67b1e29ae5ff
Fixed
450a844c045ff0895d41b05a1cbe8febd1acfcfd
Fixed
a39e31e22a535d47b14656a7d6a893c7f6cf758c
Fixed
b95629435b84b9ecc0c765995204a4d8a913ed52

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-58087.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.15.0
Fixed
5.15.176
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.121
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.67
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.6

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-58087.json"