CVE-2024-26632

Summary

In the Linux kernel, the following vulnerability has been resolved:

block: Fix iterating over an empty bio with bio_for_each_folio_all

If the bio contains no data, bio_first_folio() calls page_folio() on a NULL pointer and oopses. Move the test that we've reached the end of the bio from bio_next_folio() to bio_first_folio().

[axboe: add unlikely() to error case]

Affected Software

VendorProductVersion RangeStatus
LinuxLinux640d1930bef4f87ec8d8d2b05f0f6edc1dfcf662 < c6350b5cb78e9024c49eaee6fdb914ad2903a5feaffected
LinuxLinux640d1930bef4f87ec8d8d2b05f0f6edc1dfcf662 < a6bd8182137a12d22d3f2cee463271bdcb491659affected
LinuxLinux640d1930bef4f87ec8d8d2b05f0f6edc1dfcf662 < ca3ede3f5893e2d26d4dbdef1eec28a8487fafdeaffected
LinuxLinux640d1930bef4f87ec8d8d2b05f0f6edc1dfcf662 < 7bed6f3d08b7af27b7015da8dc3acf2b9c1f21d7affected
LinuxLinux5.17affected
LinuxLinux0 < 5.17unaffected
LinuxLinux6.1.75 <= 6.1.*unaffected
LinuxLinux6.6.14 <= 6.6.*unaffected
LinuxLinux6.7.2 <= 6.7.*unaffected
LinuxLinux6.8 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References