CVE-2024-42102
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
Revert "mm/writeback: fix possible divide-by-zero in wb_dirty_limits(), again"
Patch series "mm: Avoid possible overflows in dirty throttling".
Dirty throttling logic assumes dirty limits in page units fit into 32-bits. This patch series makes sure this is true (see patch 2/2 for more details).
This patch (of 2):
This reverts commit 9319b647902cbd5cc884ac08a8a6d54ce111fc78.
The commit is broken in several ways. Firstly, the removed (u64) cast from the multiplication will introduce a multiplication overflow on 32-bit archs if wb_thresh * bg_thresh >= 1<<32 (which is actually common - the default settings with 4GB of RAM will trigger this). Secondly, the div64_u64() is unnecessarily expensive on 32-bit archs. We have div64_ul() in case we want to be safe & cheap. Thirdly, if dirty thresholds are larger than 1<<32 pages, then dirty balancing is going to blow up in many other spectacular ways anyway so trying to fix one possible overflow is just moot.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | c593d26fb5d577ef31b6e49a31e08ae3ebc1bc1e < 253f9ea7e8e53a5176bd80ceb174907b10724c1a | affected |
| Linux | Linux | 1f12e4b3284d6c863f272eb2de0d4248ed211cf4 < 23a28f5f3f6ca1e4184bd0e9631cd0944cf1c807 | affected |
| Linux | Linux | 81e7d2530d458548b90a5c5e76b77ad5e5d1c0df < 145faa3d03688cbb7bbaaecbd84c01539852942c | affected |
| Linux | Linux | 5099871b370335809c0fd1abad74d9c7c205d43f < 2820005edae13b140f2d54267d1bd6bb23915f59 | affected |
| Linux | Linux | 16b1025eaa8fc223ab4273ece20d1c3a4211a95d < cbbe17a324437c0ff99881a3ee453da45b228a00 | affected |
| Linux | Linux | ec18ec230301583395576915d274b407743d8f6c < f6620df12cb6bdcad671d269debbb23573502f9d | affected |
| Linux | Linux | 9319b647902cbd5cc884ac08a8a6d54ce111fc78 < 000099d71648504fb9c7a4616f92c2b70c3e44ec | affected |
| Linux | Linux | 9319b647902cbd5cc884ac08a8a6d54ce111fc78 < 30139c702048f1097342a31302cbd3d478f50c63 | affected |
| Linux | Linux | 65977bed167a92e87085e757fffa5798f7314c9f | affected |
| Linux | Linux | 4.19.307 < 4.19.318 | affected |
| Linux | Linux | 5.4.269 < 5.4.280 | affected |
| Linux | Linux | 5.10.210 < 5.10.222 | affected |
| Linux | Linux | 5.15.149 < 5.15.163 | affected |
| Linux | Linux | 6.1.79 < 6.1.98 | affected |
| Linux | Linux | 6.6.18 < 6.6.39 | affected |
| Linux | Linux | 6.7.6 < 6.8 | affected |
| Linux | Linux | 6.8 | affected |
| Linux | Linux | 0 < 6.8 | unaffected |
| Linux | Linux | 4.19.318 <= 4.19.* | unaffected |
| Linux | Linux | 5.4.280 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.222 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.163 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.98 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.39 <= 6.6.* | unaffected |
| Linux | Linux | 6.9.9 <= 6.9.* | unaffected |
| Linux | Linux | 6.10 <= * | unaffected |
Weaknesses
ADP Enrichment
CVE Program Container
Additional References
- https://git.kernel.org/stable/c/253f9ea7e8e53a5176bd80ceb174907b10724c1a
- https://git.kernel.org/stable/c/23a28f5f3f6ca1e4184bd0e9631cd0944cf1c807
- https://git.kernel.org/stable/c/145faa3d03688cbb7bbaaecbd84c01539852942c
- https://git.kernel.org/stable/c/2820005edae13b140f2d54267d1bd6bb23915f59
- https://git.kernel.org/stable/c/cbbe17a324437c0ff99881a3ee453da45b228a00
- https://git.kernel.org/stable/c/f6620df12cb6bdcad671d269debbb23573502f9d
- https://git.kernel.org/stable/c/000099d71648504fb9c7a4616f92c2b70c3e44ec
- https://git.kernel.org/stable/c/30139c702048f1097342a31302cbd3d478f50c63
- https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://git.kernel.org/stable/c/253f9ea7e8e53a5176bd80ceb174907b10724c1a
- https://git.kernel.org/stable/c/23a28f5f3f6ca1e4184bd0e9631cd0944cf1c807
- https://git.kernel.org/stable/c/145faa3d03688cbb7bbaaecbd84c01539852942c
- https://git.kernel.org/stable/c/2820005edae13b140f2d54267d1bd6bb23915f59
- https://git.kernel.org/stable/c/cbbe17a324437c0ff99881a3ee453da45b228a00
- https://git.kernel.org/stable/c/f6620df12cb6bdcad671d269debbb23573502f9d
- https://git.kernel.org/stable/c/000099d71648504fb9c7a4616f92c2b70c3e44ec
- https://git.kernel.org/stable/c/30139c702048f1097342a31302cbd3d478f50c63
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.