CVE-2024-26772
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
ext4: avoid allocating blocks from corrupted group in ext4_mb_find_by_goal()
Places the logic for checking if the group's block bitmap is corrupt under the protection of the group lock to avoid allocating blocks from the group with a corrupted block bitmap.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 163a203ddb36c36d4a1c942aececda0cc8d06aa7 < 5a6dcc4ad0f7f7fa8e8d127b5526e7c5f2d38a43 | affected |
| Linux | Linux | 163a203ddb36c36d4a1c942aececda0cc8d06aa7 < 6b92b1bc16d691c95b152c6dbf027ad64315668d | affected |
| Linux | Linux | 163a203ddb36c36d4a1c942aececda0cc8d06aa7 < ffeb72a80a82aba59a6774b0611f792e0ed3b0b7 | affected |
| Linux | Linux | 163a203ddb36c36d4a1c942aececda0cc8d06aa7 < 8de8305a25bfda607fc13475ebe84b978c96d7ff | affected |
| Linux | Linux | 163a203ddb36c36d4a1c942aececda0cc8d06aa7 < d639102f4cbd4cb65d1225dba3b9265596aab586 | affected |
| Linux | Linux | 163a203ddb36c36d4a1c942aececda0cc8d06aa7 < d3bbe77a76bc52e9d4d0a120f1509be36e25c916 | affected |
| Linux | Linux | 163a203ddb36c36d4a1c942aececda0cc8d06aa7 < 21dbe20589c7f48e9c5d336ce6402bcebfa6d76a | affected |
| Linux | Linux | 163a203ddb36c36d4a1c942aececda0cc8d06aa7 < 832698373a25950942c04a512daa652c18a9b513 | affected |
| Linux | Linux | 3.12 | affected |
| Linux | Linux | 0 < 3.12 | unaffected |
| Linux | Linux | 4.19.308 <= 4.19.* | unaffected |
| Linux | Linux | 5.4.270 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.211 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.150 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.80 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.19 <= 6.6.* | unaffected |
| Linux | Linux | 6.7.7 <= 6.7.* | unaffected |
| Linux | Linux | 6.8 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
CVE Program Container
Additional References
- https://git.kernel.org/stable/c/5a6dcc4ad0f7f7fa8e8d127b5526e7c5f2d38a43
- https://git.kernel.org/stable/c/6b92b1bc16d691c95b152c6dbf027ad64315668d
- https://git.kernel.org/stable/c/ffeb72a80a82aba59a6774b0611f792e0ed3b0b7
- https://git.kernel.org/stable/c/8de8305a25bfda607fc13475ebe84b978c96d7ff
- https://git.kernel.org/stable/c/d639102f4cbd4cb65d1225dba3b9265596aab586
- https://git.kernel.org/stable/c/d3bbe77a76bc52e9d4d0a120f1509be36e25c916
- https://git.kernel.org/stable/c/21dbe20589c7f48e9c5d336ce6402bcebfa6d76a
- https://git.kernel.org/stable/c/832698373a25950942c04a512daa652c18a9b513
- https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
- https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html
References
- https://git.kernel.org/stable/c/5a6dcc4ad0f7f7fa8e8d127b5526e7c5f2d38a43
- https://git.kernel.org/stable/c/6b92b1bc16d691c95b152c6dbf027ad64315668d
- https://git.kernel.org/stable/c/ffeb72a80a82aba59a6774b0611f792e0ed3b0b7
- https://git.kernel.org/stable/c/8de8305a25bfda607fc13475ebe84b978c96d7ff
- https://git.kernel.org/stable/c/d639102f4cbd4cb65d1225dba3b9265596aab586
- https://git.kernel.org/stable/c/d3bbe77a76bc52e9d4d0a120f1509be36e25c916
- https://git.kernel.org/stable/c/21dbe20589c7f48e9c5d336ce6402bcebfa6d76a
- https://git.kernel.org/stable/c/832698373a25950942c04a512daa652c18a9b513
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.