PT-2024-35619 · Linux+8 · Linux Kernel+8

Yang Erkun

·

Published

2024-11-09

·

Updated

2026-02-21

·

CVE-2024-53173

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A use-after-free problem in the asynchronous open() function of NFSv4.0 has been resolved. This issue occurs when two threads are opening files at the same time and are forced to abort before a reply is seen, resulting in a use-after-free of the pointer to the defunct rpc task of the other thread. The fix ensures that if the RPC call is aborted before the call to nfs wait on sequence() is complete, then nfs release seqid() is called in nfs4 open release() before the rpc task is freed.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALT-PU-2024-17893
ALT-PU-2025-12647
AZL-55594
AZL-55623
BDU:2025-04994
CVE-2024-53173
DLA-4075-1
DLA-4076-1
INFSA-2025_6966
OESA-2025-1032
OESA-2025-1033
OESA-2025-1034
OESA-2025-1036
OESA-2025-1037
OPENSUSE-SU-2025_0117-1
OPENSUSE-SU-2025_0153-1
OPENSUSE-SU-2025_0154-1
OPENSUSE-SU-2025_0201-1
OPENSUSE-SU-2025_0202-1
OPENSUSE-SU-2025_0203-1
OPENSUSE-SU-2025_0229-1
OPENSUSE-SU-2025_0833-1
OPENSUSE-SU-2025_0835-1
OPENSUSE-SU-2025_0847-1
OPENSUSE-SU-2025_0853-1
OPENSUSE-SU-2025_0855-1
OPENSUSE-SU-2025_0856-1
OPENSUSE-SU-2025_0955-1
RHSA-2025:6966
RHSA-2025_6966
SUSE-SU-2025:0117-1
SUSE-SU-2025:0152-1
SUSE-SU-2025:0153-1
SUSE-SU-2025:0154-1
SUSE-SU-2025:0201-1
SUSE-SU-2025:0201-2
SUSE-SU-2025:0202-1
SUSE-SU-2025:0203-1
SUSE-SU-2025:0229-1
SUSE-SU-2025:0230-1
SUSE-SU-2025:0231-1
SUSE-SU-2025:0236-1
SUSE-SU-2025:02387-1
SUSE-SU-2025:02388-1
SUSE-SU-2025:02389-1
SUSE-SU-2025:02390-1
SUSE-SU-2025:02391-1
SUSE-SU-2025:02392-1
SUSE-SU-2025:02396-1
SUSE-SU-2025:02398-1
SUSE-SU-2025:02400-1
SUSE-SU-2025:02401-1
SUSE-SU-2025:02403-1
SUSE-SU-2025:02410-1
SUSE-SU-2025:02411-1
SUSE-SU-2025:02412-1
SUSE-SU-2025:02415-1
SUSE-SU-2025:02416-1
SUSE-SU-2025:02419-1
SUSE-SU-2025:02420-1
SUSE-SU-2025:02422-1
SUSE-SU-2025:02428-1
SUSE-SU-2025:02433-1
SUSE-SU-2025:02434-1
SUSE-SU-2025:02436-1
SUSE-SU-2025:02440-1
SUSE-SU-2025:02446-1
SUSE-SU-2025:02449-1
SUSE-SU-2025:02454-1
SUSE-SU-2025:02455-1
SUSE-SU-2025:02459-1
SUSE-SU-2025:02507-1
SUSE-SU-2025:0289-1
SUSE-SU-2025:0603-1
SUSE-SU-2025:0784-1
SUSE-SU-2025:0833-1
SUSE-SU-2025:0833-2
SUSE-SU-2025:0834-1
SUSE-SU-2025:0835-1
SUSE-SU-2025:0847-1
SUSE-SU-2025:0853-1
SUSE-SU-2025:0855-1
SUSE-SU-2025:0856-1
SUSE-SU-2025:0867-1
SUSE-SU-2025:0945-1
SUSE-SU-2025:0955-1
SUSE-SU-2025:20165-1
SUSE-SU-2025:20166-1
SUSE-SU-2025:20190-1
SUSE-SU-2025:20192-1
SUSE-SU-2025:20248-1
SUSE-SU-2025:20249-1
SUSE-SU-2025:20260-1
SUSE-SU-2025:20270-1
SUSE-SU-2025:20517-1
SUSE-SU-2025:20518-1
SUSE-SU-2025:20519-1
SUSE-SU-2025:20525-1
SUSE-SU-2025:20526-1
SUSE-SU-2025:20527-1
SUSE-SU-2025:20540-1
SUSE-SU-2025:20541-1
SUSE-SU-2025:20544-1
SUSE-SU-2025:20545-1
SUSE-SU-2025:4123-1
SUSE-SU-2025_0201-1
SUSE-SU-2025_0201-2
SUSE-SU-2025_0202-1
SUSE-SU-2025_0203-1
SUSE-SU-2025_0236-1
SUSE-SU-2025_0833-1
SUSE-SU-2025_0833-2
SUSE-SU-2025_0834-1
SUSE-SU-2025_0835-1
SUSE-SU-2025_0847-1
SUSE-SU-2025_0855-1
SUSE-SU-2025_0856-1
SUSE-SU-2025_0955-1
USN-7276-1
USN-7277-1
USN-7310-1
USN-7387-1
USN-7387-2
USN-7387-3
USN-7388-1
USN-7389-1
USN-7390-1
USN-7391-1
USN-7392-1
USN-7392-2
USN-7392-3
USN-7392-4
USN-7393-1
USN-7401-1
USN-7407-1
USN-7413-1
USN-7421-1
USN-7449-1
USN-7449-2
USN-7450-1
USN-7451-1
USN-7452-1
USN-7453-1
USN-7458-1
USN-7459-1
USN-7459-2
USN-7463-1
USN-7468-1
USN-7496-1
USN-7496-2
USN-7496-3
USN-7496-4
USN-7496-5
USN-7506-1
USN-7506-2
USN-7506-3
USN-7506-4
USN-7523-1
USN-7524-1
USN-7539-1
USN-7540-1

Affected Products

Alt Linux
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Hat
Red Os
Suse
Ubuntu