{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2024-42265","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2024-07-30T07:40:12.259Z","datePublished":"2024-08-17T08:54:21.636Z","dateUpdated":"2026-01-05T10:52:09.824Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2026-01-05T10:52:09.824Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nprotect the fetch of ->fd[fd] in do_dup2() from mispredictions\n\nboth callers have verified that fd is not greater than ->max_fds;\nhowever, misprediction might end up with\n        tofree = fdt->fd[fd];\nbeing speculatively executed.  That's wrong for the same reasons\nwhy it's wrong in close_fd()/file_close_fd_locked(); the same\nsolution applies - array_index_nospec(fd, fdt->max_fds) could differ\nfrom fd only in case of speculative execution on mispredicted path."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["fs/file.c"],"versions":[{"version":"8280d16172243702ed43432f826ca6130edb4086","lessThan":"ed42e8ff509d2a61c6642d1825032072dab79f26","status":"affected","versionType":"git"},{"version":"8280d16172243702ed43432f826ca6130edb4086","lessThan":"41a6c31df77bd8e050136b0a200b537da9e1084a","status":"affected","versionType":"git"},{"version":"8280d16172243702ed43432f826ca6130edb4086","lessThan":"08775b3d6ed117cf4518754ec7300ee42b6a5368","status":"affected","versionType":"git"},{"version":"8280d16172243702ed43432f826ca6130edb4086","lessThan":"3f480493550b6a23d3a65d095d6569d4a7f56a0f","status":"affected","versionType":"git"},{"version":"8280d16172243702ed43432f826ca6130edb4086","lessThan":"5db999fff545b924b24c9afd368ef5c17279b176","status":"affected","versionType":"git"},{"version":"8280d16172243702ed43432f826ca6130edb4086","lessThan":"da72e783afd27d9f487836b2e6738146c0edd149","status":"affected","versionType":"git"},{"version":"8280d16172243702ed43432f826ca6130edb4086","lessThan":"1171ceccabfd596ca370c5d2cbb47d110c3f2fe1","status":"affected","versionType":"git"},{"version":"8280d16172243702ed43432f826ca6130edb4086","lessThan":"8aa37bde1a7b645816cda8b80df4753ecf172bf1","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["fs/file.c"],"versions":[{"version":"3.7","status":"affected"},{"version":"0","lessThan":"3.7","status":"unaffected","versionType":"semver"},{"version":"4.19.320","lessThanOrEqual":"4.19.*","status":"unaffected","versionType":"semver"},{"version":"5.4.282","lessThanOrEqual":"5.4.*","status":"unaffected","versionType":"semver"},{"version":"5.10.224","lessThanOrEqual":"5.10.*","status":"unaffected","versionType":"semver"},{"version":"5.15.165","lessThanOrEqual":"5.15.*","status":"unaffected","versionType":"semver"},{"version":"6.1.104","lessThanOrEqual":"6.1.*","status":"unaffected","versionType":"semver"},{"version":"6.6.45","lessThanOrEqual":"6.6.*","status":"unaffected","versionType":"semver"},{"version":"6.10.4","lessThanOrEqual":"6.10.*","status":"unaffected","versionType":"semver"},{"version":"6.11","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.7","versionEndExcluding":"4.19.320"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.7","versionEndExcluding":"5.4.282"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.7","versionEndExcluding":"5.10.224"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.7","versionEndExcluding":"5.15.165"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.7","versionEndExcluding":"6.1.104"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.7","versionEndExcluding":"6.6.45"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.7","versionEndExcluding":"6.10.4"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.7","versionEndExcluding":"6.11"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/ed42e8ff509d2a61c6642d1825032072dab79f26"},{"url":"https://git.kernel.org/stable/c/41a6c31df77bd8e050136b0a200b537da9e1084a"},{"url":"https://git.kernel.org/stable/c/08775b3d6ed117cf4518754ec7300ee42b6a5368"},{"url":"https://git.kernel.org/stable/c/3f480493550b6a23d3a65d095d6569d4a7f56a0f"},{"url":"https://git.kernel.org/stable/c/5db999fff545b924b24c9afd368ef5c17279b176"},{"url":"https://git.kernel.org/stable/c/da72e783afd27d9f487836b2e6738146c0edd149"},{"url":"https://git.kernel.org/stable/c/1171ceccabfd596ca370c5d2cbb47d110c3f2fe1"},{"url":"https://git.kernel.org/stable/c/8aa37bde1a7b645816cda8b80df4753ecf172bf1"}],"title":"protect the fetch of ->fd[fd] in do_dup2() from mispredictions","x_generator":{"engine":"bippy-1.2.0"}},"adp":[{"metrics":[{"other":{"type":"ssvc","content":{"id":"CVE-2024-42265","role":"CISA Coordinator","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"version":"2.0.3","timestamp":"2024-09-10T16:12:30.860612Z"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2024-09-12T17:33:05.845Z"}},{"title":"CVE Program Container","references":[{"url":"https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html"},{"url":"https://lists.debian.org/debian-lts-announce/2024/10/msg00003.html"}],"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2025-11-03T22:02:59.813Z"}}]}}