{"uuid": "40a9c4cd-443e-4d19-b8de-d2d1a05b7d35", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-57927", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2333", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-57927\n\ud83d\udd39 Description: In the Linux kernel, the following vulnerability has been resolved:\n\nnfs: Fix oops in nfs_netfs_init_request() when copying to cache\n\nWhen netfslib wants to copy some data that has just been read on behalf of\nnfs, it creates a new write request and calls nfs_netfs_init_request() to\ninitialise it, but with a NULL file pointer.  This causes\nnfs_file_open_context() to oops - however, we don't actually need the nfs\ncontext as we're only going to write to the cache.\n\nFix this by just returning if we aren't given a file pointer and emit a\nwarning if the request was for something other than copy-to-cache.\n\nFurther, fix nfs_netfs_free_request() so that it doesn't try to free the\ncontext if the pointer is NULL.\n\ud83d\udccf Published: 2025-01-19T11:52:44.567Z\n\ud83d\udccf Modified: 2025-01-19T11:52:44.567Z\n\ud83d\udd17 References:\n1. https://git.kernel.org/stable/c/13a07cc81e2d116cece727a83746c74b87a9d417\n2. https://git.kernel.org/stable/c/86ad1a58f6a9453f49e06ef957a40a8dac00a13f", "creation_timestamp": "2025-01-19T11:58:26.000000Z"}