PT-2024-36862 · Linux+8 · Linux Kernel+8

Yang Erkun

·

Published

2024-11-18

·

Updated

2025-10-03

·

CVE-2024-56558

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.12.0-rc3+
Description A vulnerability has been resolved in the Linux kernel. The issue arises from the function e show being called with protection from RCU, which only ensures that exp will not be freed. However, the reference count for exp can drop to zero, triggering a refcount use-after-free warning when exp get is called. To resolve this issue, cache get rcu is used to ensure that exp remains active. The vulnerability is related to the nfsd module and the svc export show function. Technical details include the e show function and the exp variable, as well as the cache get rcu function used to resolve the issue.
Recommendations To resolve this issue, update the Linux kernel to a version that includes the fix, which ensures that exp remains active by using cache get rcu. As a temporary workaround, consider restricting access to the vulnerable nfsd module until a patch is available. Avoid using the e show function in the affected nfsd module until the issue is resolved. At the moment, there is no information about additional mitigation measures.

Exploit

Fix

Use After Free

Double Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-416CWE-415

Related Identifiers

ALT-PU-2025-12647
BDU:2025-03592
CVE-2024-56558
DLA-4075-1
DLA-4076-1
INFSA-2025_6966
OESA-2025-1286
OESA-2025-1450
OESA-2025-2118
OESA-2025-2119
OPENSUSE-SU-2025_0428-1
OPENSUSE-SU-2025_0499-1
OPENSUSE-SU-2025_0556-1
OPENSUSE-SU-2025_0557-1
OPENSUSE-SU-2025_0577-1
RHSA-2025:6966
RHSA-2025_6966
SUSE-SU-2025:01918-1
SUSE-SU-2025:01966-1
SUSE-SU-2025:01982-1
SUSE-SU-2025:01995-1
SUSE-SU-2025:02173-1
SUSE-SU-2025:02262-1
SUSE-SU-2025:02387-1
SUSE-SU-2025:02388-1
SUSE-SU-2025:02389-1
SUSE-SU-2025:02390-1
SUSE-SU-2025:02398-1
SUSE-SU-2025:02399-1
SUSE-SU-2025:02400-1
SUSE-SU-2025:02401-1
SUSE-SU-2025:02403-1
SUSE-SU-2025:02410-1
SUSE-SU-2025:02411-1
SUSE-SU-2025:02412-1
SUSE-SU-2025:02416-1
SUSE-SU-2025:02418-1
SUSE-SU-2025:02419-1
SUSE-SU-2025:02420-1
SUSE-SU-2025:02428-1
SUSE-SU-2025:02433-1
SUSE-SU-2025:02434-1
SUSE-SU-2025:02436-1
SUSE-SU-2025:02440-1
SUSE-SU-2025:02444-1
SUSE-SU-2025:02445-1
SUSE-SU-2025:02446-1
SUSE-SU-2025:02449-1
SUSE-SU-2025:02451-1
SUSE-SU-2025:02454-1
SUSE-SU-2025:02455-1
SUSE-SU-2025:02456-1
SUSE-SU-2025:02459-1
SUSE-SU-2025:02467-1
SUSE-SU-2025:02468-1
SUSE-SU-2025:02469-1
SUSE-SU-2025:02470-1
SUSE-SU-2025:0289-1
SUSE-SU-2025:0428-1
SUSE-SU-2025:0499-1
SUSE-SU-2025:0556-1
SUSE-SU-2025:0557-1
SUSE-SU-2025:0577-1
SUSE-SU-2025:0577-2
SUSE-SU-2025:20165-1
SUSE-SU-2025:20166-1
SUSE-SU-2025:20248-1
SUSE-SU-2025:20249-1
SUSE-SU-2025:20517-1
SUSE-SU-2025:20518-1
SUSE-SU-2025:20519-1
SUSE-SU-2025:20525-1
SUSE-SU-2025:20526-1
SUSE-SU-2025:20527-1
SUSE-SU-2025:20540-1
SUSE-SU-2025:20541-1
SUSE-SU-2025:20544-1
SUSE-SU-2025:20545-1
SUSE-SU-2025:2173-1
SUSE-SU-2025_01982-1
SUSE-SU-2025_02173-1
SUSE-SU-2025_02262-1
SUSE-SU-2025_0428-1
SUSE-SU-2025_0499-1
SUSE-SU-2025_0557-1
SUSE-SU-2025_0577-1
SUSE-SU-2025_0577-2
USN-7379-1
USN-7379-2
USN-7380-1
USN-7381-1
USN-7382-1
USN-7387-1
USN-7387-2
USN-7387-3
USN-7388-1
USN-7389-1
USN-7390-1
USN-7391-1
USN-7392-1
USN-7392-2
USN-7392-3
USN-7392-4
USN-7393-1
USN-7401-1
USN-7407-1
USN-7413-1
USN-7421-1
USN-7449-1
USN-7449-2
USN-7450-1
USN-7451-1
USN-7452-1
USN-7453-1
USN-7458-1
USN-7459-1
USN-7459-2
USN-7463-1
USN-7468-1
USN-7523-1
USN-7524-1
USN-7539-1
USN-7540-1

Affected Products

Alt Linux
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Hat
Red Os
Suse
Ubuntu