CVE-2024-44992

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to a possible NULL dereference in the cifs free subrequest() function of the Linux kernel's SMB client. This occurs when rdata->credits.value != 0 && rdata->server == NULL, causing add credits and wake if() to call rdata->server->ops->add credits(), resulting in a NULL dereference problem. The Clang static checker (scan-build) warning indicates an access to the field ops that results in a dereference of a null pointer. The vulnerability may allow an attacker to impact the availability of protected information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.