PT-2024-33797 · Linux+2 · Linux Kernel+2
Published
2024-08-20
·
Updated
2025-02-28
·
CVE-2024-49956
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions:
Linux kernel (affected versions not specified)
Description:
A double destroy workqueue error has been identified in the Linux kernel, specifically in the gfs2 module. This issue occurs when gfs2 fill super() fails, leading to destroy workqueue() being called twice on the same work queue. The problem can be resolved by setting the work queue pointer to NULL after the first destroy workqueue() call and checking for a NULL pointer before attempting to destroy the work queue again.
Recommendations:
To fix this issue, set the work queue pointer to NULL after the first destroy workqueue() call and check for a NULL pointer before attempting to destroy the work queue again.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
NULL Pointer Dereference
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Linuxmint
Linux Kernel
Ubuntu