CVE-2024-41015

Summary

In the Linux kernel, the following vulnerability has been resolved:

ocfs2: add bounds checking to ocfs2_check_dir_entry()

This adds sanity checks for ocfs2_dir_entry to make sure all members of ocfs2_dir_entry don't stray beyond valid memory region.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux23193e513d1cd69411469f028d56fd175d4a6b07 < 13d38c00df97289e6fba2e54193959293fd910d2affected
LinuxLinux23193e513d1cd69411469f028d56fd175d4a6b07 < 564d23cc5b216211e1694d53f7e45959396874d0affected
LinuxLinux23193e513d1cd69411469f028d56fd175d4a6b07 < 77495e5da5cb110a8fed27b052c77853fe282176affected
LinuxLinux23193e513d1cd69411469f028d56fd175d4a6b07 < 53de17ad01cb5f6f8426f597e9d5c87d4cf53bb7affected
LinuxLinux23193e513d1cd69411469f028d56fd175d4a6b07 < fd65685594ee707cbf3ddf22ebb73697786ac114affected
LinuxLinux23193e513d1cd69411469f028d56fd175d4a6b07 < e05a24289db90f76ff606086aadd62d068a88dcdaffected
LinuxLinux23193e513d1cd69411469f028d56fd175d4a6b07 < 624b380074f0dc209fb8706db3295c735079f34caffected
LinuxLinux23193e513d1cd69411469f028d56fd175d4a6b07 < edb2e67dd4626b06fd7eb37252d5067912e78d59affected
LinuxLinux23193e513d1cd69411469f028d56fd175d4a6b07 < 255547c6bb8940a97eea94ef9d464ea5967763fbaffected
LinuxLinux2.6.24affected
LinuxLinux0 < 2.6.24unaffected
LinuxLinux4.19.319 <= 4.19.*unaffected
LinuxLinux5.4.281 <= 5.4.*unaffected
LinuxLinux5.10.223 <= 5.10.*unaffected
LinuxLinux5.15.164 <= 5.15.*unaffected
LinuxLinux6.1.102 <= 6.1.*unaffected
LinuxLinux6.6.43 <= 6.6.*unaffected
LinuxLinux6.9.12 <= 6.9.*unaffected
LinuxLinux6.10.2 <= 6.10.*unaffected
LinuxLinux6.11 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References