[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2024-53216":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T14:53:31.930Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":20,"aliases":21,"duplicate_of":9,"upstream":22,"downstream":23,"duplicates":52,"related":53,"reserved_at":9,"published_at":66,"modified_at":67,"state":68,"summary":69,"references_raw":78,"kevs":97,"epss":98,"epss_history":101,"metrics":366,"affected":374},"CVE-2024-53216","In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: release svc_expkey/svc_export with rcu_work\n\nThe last reference for `cache_head` can be reduced to zero in `c_show`\nand `e_show`(using `rcu_read_lock` and `rcu_read_unlock`). Consequently,\n`svc_export_put` and `expkey_put` will be invoked, leading to two\nissues:\n\n1. The `svc_export_put` will directly free ex_uuid. However,\n   `e_show`/`c_show` will access `ex_uuid` after `cache_put`, which can\n   trigger a use-after-free issue, shown below.\n\n   ==================================================================\n   BUG: KASAN: slab-use-after-free in svc_export_show+0x362/0x430 [nfsd]\n   Read of size 1 at addr ff11000010fdc120 by task cat/870\n\n   CPU: 1 UID: 0 PID: 870 Comm: cat Not tainted 6.12.0-rc3+ #1\n   Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n   1.16.1-2.fc37 04/01/2014\n   Call Trace:\n    \u003CTASK>\n    dump_stack_lvl+0x53/0x70\n    print_address_description.constprop.0+0x2c/0x3a0\n    print_report+0xb9/0x280\n    kasan_report+0xae/0xe0\n    svc_export_show+0x362/0x430 [nfsd]\n    c_show+0x161/0x390 [sunrpc]\n    seq_read_iter+0x589/0x770\n    seq_read+0x1e5/0x270\n    proc_reg_read+0xe1/0x140\n    vfs_read+0x125/0x530\n    ksys_read+0xc1/0x160\n    do_syscall_64+0x5f/0x170\n    entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n   Allocated by task 830:\n    kasan_save_stack+0x20/0x40\n    kasan_save_track+0x14/0x30\n    __kasan_kmalloc+0x8f/0xa0\n    __kmalloc_node_track_caller_noprof+0x1bc/0x400\n    kmemdup_noprof+0x22/0x50\n    svc_export_parse+0x8a9/0xb80 [nfsd]\n    cache_do_downcall+0x71/0xa0 [sunrpc]\n    cache_write_procfs+0x8e/0xd0 [sunrpc]\n    proc_reg_write+0xe1/0x140\n    vfs_write+0x1a5/0x6d0\n    ksys_write+0xc1/0x160\n    do_syscall_64+0x5f/0x170\n    entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n   Freed by task 868:\n    kasan_save_stack+0x20/0x40\n    kasan_save_track+0x14/0x30\n    kasan_save_free_info+0x3b/0x60\n    __kasan_slab_free+0x37/0x50\n    kfree+0xf3/0x3e0\n    svc_export_put+0x87/0xb0 [nfsd]\n    cache_purge+0x17f/0x1f0 [sunrpc]\n    nfsd_destroy_serv+0x226/0x2d0 [nfsd]\n    nfsd_svc+0x125/0x1e0 [nfsd]\n    write_threads+0x16a/0x2a0 [nfsd]\n    nfsctl_transaction_write+0x74/0xa0 [nfsd]\n    vfs_write+0x1a5/0x6d0\n    ksys_write+0xc1/0x160\n    do_syscall_64+0x5f/0x170\n    entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n2. We cannot sleep while using `rcu_read_lock`/`rcu_read_unlock`.\n   However, `svc_export_put`/`expkey_put` will call path_put, which\n   subsequently triggers a sleeping operation due to the following\n   `dput`.\n\n   =============================\n   WARNING: suspicious RCU usage\n   5.10.0-dirty #141 Not tainted\n   -----------------------------\n   ...\n   Call Trace:\n   dump_stack+0x9a/0xd0\n   ___might_sleep+0x231/0x240\n   dput+0x39/0x600\n   path_put+0x1b/0x30\n   svc_export_put+0x17/0x80\n   e_show+0x1c9/0x200\n   seq_read_iter+0x63f/0x7c0\n   seq_read+0x226/0x2d0\n   vfs_read+0x113/0x2c0\n   ksys_read+0xc9/0x170\n   do_syscall_64+0x33/0x40\n   entry_SYSCALL_64_after_hwframe+0x67/0xd1\n\nFix these issues by using `rcu_work` to help release\n`svc_expkey`/`svc_export`. This approach allows for an asynchronous\ncontext to invoke `path_put` and also facilitates the freeing of\n`uuid/exp/key` after an RCU grace period.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-416","Use After Free","The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory \"belongs\" to the code that operates on the new pointer.","weakness","Stable","Variant","High",[],[],[],[],[24,26,28,30,32,34,36,38,40,42,44,46,48,50],{"_key":25},"SUSE-SU-2025:0289-1",{"_key":27},"SUSE-SU-2025:0117-1",{"_key":29},"SUSE-SU-2025:0153-1",{"_key":31},"SUSE-SU-2025:0154-1",{"_key":33},"SUSE-SU-2025:20165-1",{"_key":35},"SUSE-SU-2025:20166-1",{"_key":37},"SUSE-SU-2025:20248-1",{"_key":39},"SUSE-SU-2025:20249-1",{"_key":41},"DEBIAN-CVE-2024-53216",{"_key":43},"RHSA-2025:20095",{"_key":45},"RHSA-2026:14339",{"_key":47},"RHSA-2025:6966",{"_key":49},"UBUNTU-CVE-2024-53216",{"_key":51},"USN-7310-1",[],[54,55,57,59,60,61,62,63,64,65],{"_key":25},{"_key":56},"USN-7276-1",{"_key":58},"USN-7277-1",{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},"2024-12-27T13:50:01.869Z","2026-05-11T20:53:05.628Z","Analyzed",{"cisa_kev":70,"cisa_ransomware":70,"cisa_vendor":9,"epss_severity":71,"epss_score":72,"severity":73,"severity_score":74,"severity_version":75,"severity_source":76,"severity_vector":77,"severity_status":68},false,"low",0.00013,"high",7.8,"v3.1","cve.org","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",[79,85,89,93],{"url":80,"sources":81,"tags":83},"https://git.kernel.org/stable/c/bd8524148dd8c123334b066faa90590ba2ef8e6f",[76,82],"nvd",[84],"Patch",{"url":86,"sources":87,"tags":88},"https://git.kernel.org/stable/c/2e4854599200f4d021df8ae17e69221d7c149f3e",[76,82],[84],{"url":90,"sources":91,"tags":92},"https://git.kernel.org/stable/c/ad4363a24a5746b257c0beb5d8cc68f9b62c173f",[76,82],[84],{"url":94,"sources":95,"tags":96},"https://git.kernel.org/stable/c/f8c989a0c89a75d30f899a7cabdc14d72522bb8d",[76,82],[84],[],{"date":99,"score":72,"percentile":100},"2026-06-04",0.02377,[102,106,109,112,115,118,121,124,127,131,134,137,140,142,145,149,152,155,158,161,164,167,170,173,176,179,182,185,188,191,194,197,200,203,206,209,212,215,218,221,224,227,230,233,236,239,242,244,247,250,253,256,259,262,265,267,270,273,276,279,282,285,288,291,294,297,300,303,306,309,312,315,318,321,324,327,330,332,335,338,341,343,345,348,351,353,356,359,361,364],{"date":103,"score":104,"percentile":105},"2025-11-04",0.00038,0.10796,{"date":107,"score":104,"percentile":108},"2025-11-05",0.10824,{"date":110,"score":104,"percentile":111},"2025-11-06",0.10937,{"date":113,"score":104,"percentile":114},"2025-11-07",0.10956,{"date":116,"score":104,"percentile":117},"2025-11-08",0.10969,{"date":119,"score":104,"percentile":120},"2025-11-09",0.1093,{"date":122,"score":104,"percentile":123},"2025-11-10",0.10882,{"date":125,"score":104,"percentile":126},"2025-11-11",0.10895,{"date":128,"score":129,"percentile":130},"2025-11-12",0.0004,0.11683,{"date":132,"score":129,"percentile":133},"2025-11-13",0.11707,{"date":135,"score":129,"percentile":136},"2025-11-14",0.11721,{"date":138,"score":104,"percentile":139},"2025-11-15",0.10966,{"date":141,"score":104,"percentile":117},"2025-11-16",{"date":143,"score":104,"percentile":144},"2025-11-17",0.10953,{"date":146,"score":147,"percentile":148},"2025-11-18",0.00071,0.17826,{"date":150,"score":147,"percentile":151},"2025-11-19",0.17848,{"date":153,"score":129,"percentile":154},"2025-11-20",0.07428,{"date":156,"score":129,"percentile":157},"2025-11-21",0.11724,{"date":159,"score":129,"percentile":160},"2025-11-22",0.11731,{"date":162,"score":104,"percentile":163},"2025-11-23",0.1096,{"date":165,"score":104,"percentile":166},"2025-11-24",0.10921,{"date":168,"score":104,"percentile":169},"2025-11-25",0.10927,{"date":171,"score":129,"percentile":172},"2025-11-26",0.1167,{"date":174,"score":129,"percentile":175},"2025-11-27",0.11676,{"date":177,"score":129,"percentile":178},"2025-11-28",0.11667,{"date":180,"score":104,"percentile":181},"2025-11-29",0.10915,{"date":183,"score":104,"percentile":184},"2025-11-30",0.10919,{"date":186,"score":104,"percentile":187},"2025-12-01",0.10962,{"date":189,"score":104,"percentile":190},"2025-12-02",0.1097,{"date":192,"score":104,"percentile":193},"2025-12-03",0.10981,{"date":195,"score":104,"percentile":196},"2025-12-04",0.10959,{"date":198,"score":104,"percentile":199},"2025-12-05",0.10985,{"date":201,"score":104,"percentile":202},"2025-12-06",0.10993,{"date":204,"score":104,"percentile":205},"2025-12-07",0.10987,{"date":207,"score":104,"percentile":208},"2025-12-08",0.10989,{"date":210,"score":104,"percentile":211},"2025-12-09",0.1104,{"date":213,"score":104,"percentile":214},"2025-12-10",0.11098,{"date":216,"score":104,"percentile":217},"2025-12-11",0.11129,{"date":219,"score":104,"percentile":220},"2025-12-12",0.11155,{"date":222,"score":104,"percentile":223},"2025-12-13",0.11158,{"date":225,"score":104,"percentile":226},"2025-12-14",0.11159,{"date":228,"score":104,"percentile":229},"2025-12-15",0.11101,{"date":231,"score":104,"percentile":232},"2025-12-16",0.11083,{"date":234,"score":104,"percentile":235},"2025-12-17",0.11165,{"date":237,"score":104,"percentile":238},"2025-12-18",0.11211,{"date":240,"score":104,"percentile":241},"2025-12-19",0.11223,{"date":243,"score":104,"percentile":241},"2025-12-20",{"date":245,"score":104,"percentile":246},"2025-12-21",0.11202,{"date":248,"score":104,"percentile":249},"2025-12-22",0.11173,{"date":251,"score":104,"percentile":252},"2025-12-23",0.11172,{"date":254,"score":104,"percentile":255},"2025-12-24",0.11186,{"date":257,"score":104,"percentile":258},"2025-12-25",0.11264,{"date":260,"score":104,"percentile":261},"2025-12-26",0.11258,{"date":263,"score":104,"percentile":264},"2025-12-27",0.1127,{"date":266,"score":104,"percentile":258},"2025-12-28",{"date":268,"score":104,"percentile":269},"2025-12-29",0.1123,{"date":271,"score":104,"percentile":272},"2025-12-30",0.11209,{"date":274,"score":104,"percentile":275},"2025-12-31",0.11254,{"date":277,"score":104,"percentile":278},"2026-01-01",0.11298,{"date":280,"score":104,"percentile":281},"2026-01-02",0.11291,{"date":283,"score":104,"percentile":284},"2026-01-03",0.1126,{"date":286,"score":104,"percentile":287},"2026-01-04",0.11187,{"date":289,"score":104,"percentile":290},"2026-01-05",0.11147,{"date":292,"score":104,"percentile":293},"2026-01-06",0.11152,{"date":295,"score":104,"percentile":296},"2026-01-07",0.11184,{"date":298,"score":104,"percentile":299},"2026-01-08",0.11233,{"date":301,"score":104,"percentile":302},"2026-01-09",0.11257,{"date":304,"score":104,"percentile":305},"2026-01-10",0.11266,{"date":307,"score":104,"percentile":308},"2026-01-11",0.11239,{"date":310,"score":104,"percentile":311},"2026-01-12",0.11212,{"date":313,"score":104,"percentile":314},"2026-01-13",0.11189,{"date":316,"score":104,"percentile":317},"2026-01-14",0.11241,{"date":319,"score":104,"percentile":320},"2026-01-15",0.11248,{"date":322,"score":104,"percentile":323},"2026-01-16",0.11288,{"date":325,"score":104,"percentile":326},"2026-01-17",0.11297,{"date":328,"score":104,"percentile":329},"2026-01-18",0.11251,{"date":331,"score":104,"percentile":287},"2026-01-19",{"date":333,"score":104,"percentile":334},"2026-01-20",0.1117,{"date":336,"score":104,"percentile":337},"2026-01-21",0.11143,{"date":339,"score":104,"percentile":340},"2026-01-22",0.11134,{"date":342,"score":104,"percentile":241},"2026-01-23",{"date":344,"score":104,"percentile":323},"2026-01-24",{"date":346,"score":104,"percentile":347},"2026-01-25",0.1125,{"date":349,"score":104,"percentile":350},"2026-01-26",0.11188,{"date":352,"score":104,"percentile":252},"2026-01-27",{"date":354,"score":104,"percentile":355},"2026-01-28",0.11161,{"date":357,"score":104,"percentile":358},"2026-01-29",0.11137,{"date":360,"score":104,"percentile":223},"2026-01-30",{"date":362,"score":104,"percentile":363},"2026-01-31",0.11174,{"date":365,"score":104,"percentile":363},"2026-02-01",[367,372],{"source":76,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":368,"cvss_v4_0":9},{"baseScore":74,"baseSeverity":369,"vectorString":77,"impactScore":370,"exploitabilityScore":371},"HIGH",9.8,4.6,{"source":82,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":373,"cvss_v4_0":9},{"baseScore":74,"baseSeverity":369,"vectorString":77,"impactScore":370,"exploitabilityScore":371},[375,398],{"ecosystem":9,"name":376,"vendor":377,"product":377,"cpe_part":378,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":379},"Linux","linux","a",[380,387,390,393,396],{"version":381,"is_range":382,"range_type":76,"version_start":383,"version_start_type":384,"version_end":385,"version_end_type":386,"fixed_in":9},">= 9ceddd9da13434a5906255c0fc528c385aded283, \u003C bd8524148dd8c123334b066faa90590ba2ef8e6f",true,"9ceddd9da13434a5906255c0fc528c385aded283","including","bd8524148dd8c123334b066faa90590ba2ef8e6f","excluding",{"version":388,"is_range":382,"range_type":76,"version_start":383,"version_start_type":384,"version_end":389,"version_end_type":386,"fixed_in":9},">= 9ceddd9da13434a5906255c0fc528c385aded283, \u003C 2e4854599200f4d021df8ae17e69221d7c149f3e","2e4854599200f4d021df8ae17e69221d7c149f3e",{"version":391,"is_range":382,"range_type":76,"version_start":383,"version_start_type":384,"version_end":392,"version_end_type":386,"fixed_in":9},">= 9ceddd9da13434a5906255c0fc528c385aded283, \u003C ad4363a24a5746b257c0beb5d8cc68f9b62c173f","ad4363a24a5746b257c0beb5d8cc68f9b62c173f",{"version":394,"is_range":382,"range_type":76,"version_start":383,"version_start_type":384,"version_end":395,"version_end_type":386,"fixed_in":9},">= 9ceddd9da13434a5906255c0fc528c385aded283, \u003C f8c989a0c89a75d30f899a7cabdc14d72522bb8d","f8c989a0c89a75d30f899a7cabdc14d72522bb8d",{"version":397,"is_range":70,"range_type":76,"version_start":397,"version_start_type":384,"version_end":397,"version_end_type":384,"fixed_in":9},"4.20",{"ecosystem":9,"name":399,"vendor":377,"product":400,"cpe_part":401,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":402},"linux kernel","linux_kernel","o",[403,407,411],{"version":404,"is_range":382,"range_type":405,"version_start":397,"version_start_type":384,"version_end":406,"version_end_type":386,"fixed_in":9},"gte4.20_lt6.6.64","cpe","6.6.64",{"version":408,"is_range":382,"range_type":405,"version_start":409,"version_start_type":384,"version_end":410,"version_end_type":386,"fixed_in":9},"gte6.7_lt6.11.11","6.7","6.11.11",{"version":412,"is_range":382,"range_type":405,"version_start":413,"version_start_type":384,"version_end":414,"version_end_type":386,"fixed_in":9},"gte6.12_lt6.12.2","6.12","6.12.2"]