CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-53143

In the Linux kernel, the following vulnerability has been resolved: fsnotify: Fix ordering of iput() and watched_objects decrement Ensure the superblock is kept alive until we're done with iput(). Holding a reference to an inode is not allowed unless we ensure the superblock stays alive, which fsnotify does by keeping the watched_objects count elevated, so iput() must happen before the watched_objects decrement. This can lead to a UAF of something like sb->s_fs_info in tmpfs, but the UAF is hard to hit because race orderings that oops are more likely, thanks to the CHECK_DATA_CORRUPTION() block in generic_shutdown_super(). Also, ensure that fsnotify_put_sb_watched_objects() doesn't call fsnotify_sb_watched_objects() on a superblock that may have already been freed, which would cause a UAF read of sb->s_fsnotify_info.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 11.0%

CVSS Severity

CVSS v3 Score 7.8

References

Products affected by CVE-2024-53143

Linux » Linux Kernel » Version: 6.10

cpe:2.3:o:linux:linux_kernel:6.10
Linux » Linux Kernel » Version: 6.10.0

cpe:2.3:o:linux:linux_kernel:6.10.0
Linux » Linux Kernel » Version: 6.10.1

cpe:2.3:o:linux:linux_kernel:6.10.1
Linux » Linux Kernel » Version: 6.10.10

cpe:2.3:o:linux:linux_kernel:6.10.10
Linux » Linux Kernel » Version: 6.10.11

cpe:2.3:o:linux:linux_kernel:6.10.11
Linux » Linux Kernel » Version: 6.10.12

cpe:2.3:o:linux:linux_kernel:6.10.12
Linux » Linux Kernel » Version: 6.10.13

cpe:2.3:o:linux:linux_kernel:6.10.13
Linux » Linux Kernel » Version: 6.10.14

cpe:2.3:o:linux:linux_kernel:6.10.14
Linux » Linux Kernel » Version: 6.10.2

cpe:2.3:o:linux:linux_kernel:6.10.2
Linux » Linux Kernel » Version: 6.10.3

cpe:2.3:o:linux:linux_kernel:6.10.3
Linux » Linux Kernel » Version: 6.10.4

cpe:2.3:o:linux:linux_kernel:6.10.4
Linux » Linux Kernel » Version: 6.10.5

cpe:2.3:o:linux:linux_kernel:6.10.5
Linux » Linux Kernel » Version: 6.10.6

cpe:2.3:o:linux:linux_kernel:6.10.6
Linux » Linux Kernel » Version: 6.10.7

cpe:2.3:o:linux:linux_kernel:6.10.7
Linux » Linux Kernel » Version: 6.10.8

cpe:2.3:o:linux:linux_kernel:6.10.8
Linux » Linux Kernel » Version: 6.10.9

cpe:2.3:o:linux:linux_kernel:6.10.9
Linux » Linux Kernel » Version: 6.11

cpe:2.3:o:linux:linux_kernel:6.11
Linux » Linux Kernel » Version: 6.11.1

cpe:2.3:o:linux:linux_kernel:6.11.1
Linux » Linux Kernel » Version: 6.11.10

cpe:2.3:o:linux:linux_kernel:6.11.10
Linux » Linux Kernel » Version: 6.11.2

cpe:2.3:o:linux:linux_kernel:6.11.2
Linux » Linux Kernel » Version: 6.11.3

cpe:2.3:o:linux:linux_kernel:6.11.3
Linux » Linux Kernel » Version: 6.11.4

cpe:2.3:o:linux:linux_kernel:6.11.4
Linux » Linux Kernel » Version: 6.11.5

cpe:2.3:o:linux:linux_kernel:6.11.5
Linux » Linux Kernel » Version: 6.11.6

cpe:2.3:o:linux:linux_kernel:6.11.6
Linux » Linux Kernel » Version: 6.11.7

cpe:2.3:o:linux:linux_kernel:6.11.7
Linux » Linux Kernel » Version: 6.11.8

cpe:2.3:o:linux:linux_kernel:6.11.8
Linux » Linux Kernel » Version: 6.11.9

cpe:2.3:o:linux:linux_kernel:6.11.9
Linux » Linux Kernel » Version: 6.12

cpe:2.3:o:linux:linux_kernel:6.12
Linux » Linux Kernel » Version: 6.12.1

cpe:2.3:o:linux:linux_kernel:6.12.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-53143

Products

Pricing

Contact Us