CVE-2024-46752

Summary

In the Linux kernel, the following vulnerability has been resolved:

btrfs: replace BUG_ON() with error handling at update_ref_for_cow()

Instead of a BUG_ON() just return an error, log an error message and abort the transaction in case we find an extent buffer belonging to the relocation tree that doesn't have the full backref flag set. This is unexpected and should never happen (save for bugs or a potential bad memory).

Affected Software

VendorProductVersion RangeStatus
LinuxLinux5d4f98a28c7d334091c1b7744f48a1acdd2a4ae0 < b50857b96429a09fd3beed9f7f21b7bb7c433688affected
LinuxLinux5d4f98a28c7d334091c1b7744f48a1acdd2a4ae0 < 0fbac73a97286a7ec72229cb9b42d760a2c717acaffected
LinuxLinux5d4f98a28c7d334091c1b7744f48a1acdd2a4ae0 < 41a0f85e268d72fe04f731b8ceea4748c2d65491affected
LinuxLinux5d4f98a28c7d334091c1b7744f48a1acdd2a4ae0 < f895db00c65e5d77c437cce946da9ec29dcdf563affected
LinuxLinux5d4f98a28c7d334091c1b7744f48a1acdd2a4ae0 < b56329a782314fde5b61058e2a25097af7ccb675affected
LinuxLinux2.6.31affected
LinuxLinux0 < 2.6.31unaffected
LinuxLinux5.15.167 <= 5.15.*unaffected
LinuxLinux6.1.110 <= 6.1.*unaffected
LinuxLinux6.6.51 <= 6.6.*unaffected
LinuxLinux6.10.10 <= 6.10.*unaffected
LinuxLinux6.11 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References