CVE Radar Logo
CVERadar
CVE Radar Logo
CVERadar

CVE-2024-56749

Medium Severity
Linux
SVRS
30/100
CVSSv3
5.5/10
EPSS
0.00021/1

CVE-2024-56749 is a vulnerability in the Linux kernel's Distributed Lock Manager (DLM). Specifically, the dlm_recover_members function fails to properly manage reference counts upon error, potentially leaving resources alive and leading to issues during recovery. The fix ensures that references to the root_list are correctly dropped when dlm_recover_members() fails. This can occur if ping_members() encounters an -EINTR error due to another recovery process being triggered. The CVSS score is 5.5, indicating a medium severity, while the SOCRadar Vulnerability Risk Score (SVRS) is 30, suggesting it is not considered a critical threat needing immediate action based on current threat intelligence. Although not critical according to SOCRadar, it's essential to apply the patch to prevent potential resource leaks and instability within the DLM. Failing to address this issue could lead to unpredictable behavior in systems relying on DLM for resource management. This kernel vulnerability could affect system stability.

TAGS
In The Wild
VECTOR STRING
CVSS:3.1
AV:L
AC:L
PR:L
UI:N
S:U
C:N
I:N
A:H
PUBLICATION DATE2024-12-29
LAST MODIFIED2025-01-20

Indicators of Compromise

No IOCs found for this CVE

Exploits

No exploits found for this CVE

Enhance Your CVE Management with SOCRadar Vulnerability Intelligence
Get comprehensive CVE details, real-time notifications, and proactive threat management all in one platform.
CREATE FREE ACCOUNT
CVE Details
Access comprehensive CVE information instantly
Real-time Tracking
Subscribe to CVEs and get instant updates
Exploit Analysis
Monitor related APT groups and threats
IOC Tracking
Analyze and track CVE-related IOCs

News

CVE-2024-56749 | Linux Kernel up to 6.11.10/6.12.1 dlm_recover_members reference count (Nessus ID 216493)
vuldb.com2025-02-20
CVE-2024-56749 | Linux Kernel up to 6.11.10/6.12.1 dlm_recover_members reference count (Nessus ID 216493) | A vulnerability classified as critical has been found in Linux Kernel up to 6.11.10/6.12.1. This affects the function dlm_recover_members. The manipulation leads to improper update of reference count. This vulnerability is uniquely identified as CVE-2024-56749. The attack needs to be approached within
vuldb.com
rss
forum
news
CVE-2024-56749 | Linux Kernel up to 6.11.10/6.12.1 dlm_recover_members reference count
vuldb.com2024-12-29
CVE-2024-56749 | Linux Kernel up to 6.11.10/6.12.1 dlm_recover_members reference count | A vulnerability classified as critical has been found in Linux Kernel up to 6.11.10/6.12.1. This affects the function dlm_recover_members. The manipulation leads to improper update of reference count. This vulnerability is uniquely identified as CVE-2024-56749. The attack needs to be approached within the local network
vuldb.com
rss
forum
news

Social Media

CVE-2024-56749 In the Linux kernel, the following vulnerability has been resolved: dlm: fix dlm_recover_members refcount on error If dlm_recover_members() fails we don't drop the … https://t.co/IOvgeeUAKm
0
1
1

Affected Software

Configuration 1
TypeVendorProduct
OSLinuxlinux_kernel

References

ReferenceLink
416BAAA9-DC9F-4396-8D5F-8C081FB06D67https://git.kernel.org/stable/c/200b977ebbc313a59174ba971006a231b3533dc5
416BAAA9-DC9F-4396-8D5F-8C081FB06D67https://git.kernel.org/stable/c/3230718a75a6c30ed60ac920c26be2119fa82b8e
416BAAA9-DC9F-4396-8D5F-8C081FB06D67https://git.kernel.org/stable/c/fb2ec564887af1f365d754f7c306f1b5cd375b5e

CWE Details

No CWE details found for this CVE

CVE Radar

Real-time CVE Intelligence & Vulnerability Management Platform

CVE Radar provides comprehensive vulnerability intelligence by monitoring CVE databases, security advisories, and threat feeds. Get instant updates on new vulnerabilities, exploit details, and mitigation strategies specific to your assets.

Get Free Vulnerability Intelligence AccessAccess real-time CVE monitoring, exploit analysis, and threat intelligence