CVE-2024-36939

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.6.37

Description: The issue is related to the Linux kernel's handling of errors in the rpc proc register() function, which is called during the initialization of the NFS (Network File System) subsystem. When this function fails, the error is ignored, and the nfs net init() function may still succeed, leading to a potential issue when the nfs net exit() function is called during the destruction of network namespaces. This can cause a warning to be triggered due to an attempt to remove a non-existing proc directory entry. The problem has been made more visible by a recent commit that converted the procfs to per-netns.

Recommendations: To resolve this issue, update the Linux kernel to version 6.6.37 or later. This update includes the necessary fix to properly handle the error of rpc proc register() in nfs net init().