PT-2024-35624 · Linux+5 · Linux Kernel+5

Published

2024-11-18

·

Updated

2026-05-26

·

CVE-2024-53178

CVSS v2.0

5.5

Medium

VectorAV:L/AC:H/Au:S/C:C/I:N/A:C
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The issue is related to a memory leak in the Linux kernel's SMB functionality. Specifically, when the open cached dir() function races with the tcon reconnection, it can lead to a memory leak. The reconnection process invokes invalidate all cached dirs(), which removes all cfids from the cfids->entries list but doesn't drop a ref if has lease isn't true. This results in the currently-being-constructed cfid not being on the list but still having a refcount of 2, causing a leak if returned from open cached dir(). The fix involves setting cfid->has lease when the ref is actually taken, ensuring the cfid is not used by other threads until it has a valid time. This addresses kmemleaks and BUG splats when unmounting the SMB filesystem.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Memory Leak

Weakness Enumeration

CWE-911CWE-401

Related Identifiers

ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_16880
ALT-PU-2025-12647
BDU:2025-06808
CVE-2024-53178
ECHO-8CB8-E665-3685
OESA-2025-1286
OESA-2025-1450
OPENSUSE-SU-2025_0847-1
OPENSUSE-SU-2025_0856-1
OPENSUSE-SU-2025_0955-1
SUSE-SU-2025:01919-1
SUSE-SU-2025:0847-1
SUSE-SU-2025:0856-1
SUSE-SU-2025:0955-1
SUSE-SU-2025:1176-1
SUSE-SU-2025:1241-1
SUSE-SU-2025:20190-1
SUSE-SU-2025:20192-1
SUSE-SU-2025:20260-1
SUSE-SU-2025:20270-1
SUSE-SU-2025_0847-1
SUSE-SU-2025_0856-1
SUSE-SU-2025_0955-1
SUSE-SU-2025_1241-1
USN-7276-1
USN-7277-1
USN-7310-1
USN-7449-1
USN-7449-2
USN-7450-1
USN-7451-1
USN-7452-1
USN-7453-1
USN-7468-1
USN-7523-1
USN-7524-1

Affected Products

Alt Linux
Debian
Linuxmint
Linux Kernel
Suse
Ubuntu