CVE-2024-38580

epoll: be better about file lifetimes

Description

In the Linux kernel, the following vulnerability has been resolved: epoll: be better about file lifetimes epoll can call out to vfs_poll() with a file pointer that may race with the last 'fput()'. That would make f_count go down to zero, and while the ep->mtx locking means that the resulting file pointer tear-down will be blocked until the poll returns, it means that f_count is already dead, and any use of it won't actually get a reference to the file any more: it's dead regardless. Make sure we have a valid ref on the file pointer before we call down to vfs_poll() from the epoll routines.

N/A
CVSS
Severity:
EPSS 0.14%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/cbfd1088e24ec4c1199756a37cb8e4cd0a4b016e
https://git.kernel.org/stable/c/559214eb4e5c3d05e69428af2fae2691ba1eb784
https://git.kernel.org/stable/c/4f65f4defe4e23659275ce5153541cd4f76ce2d2
https://git.kernel.org/stable/c/16e3182f6322575eb7c12e728ad3c7986a189d5d
https://git.kernel.org/stable/c/4efaa5acf0a1d2b5947f98abb3acf8bfd966422b

Frequently Asked Questions

What is the severity of CVE-2024-38580?
CVE-2024-38580 has not yet been assigned a CVSS score.
How to fix CVE-2024-38580?
To fix CVE-2024-38580, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2024-38580 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2024-38580 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2024-38580?
CVE-2024-38580 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.