CVE-2024-49966

Summary

In the Linux kernel, the following vulnerability has been resolved:

ocfs2: cancel dqi_sync_work before freeing oinfo

ocfs2_global_read_info() will initialize and schedule dqi_sync_work at the end, if error occurs after successfully reading global quota, it will trigger the following warning with CONFIG_DEBUG_OBJECTS_* enabled:

ODEBUG: free active (active state 0) object: 00000000d8b0ce28 object type: timer_list hint: qsync_work_fn+0x0/0x16c

This reports that there is an active delayed work when freeing oinfo in error handling, so cancel dqi_sync_work first. BTW, return status instead of -1 when .read_file_info fails.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux171bf93ce11f4c9929fdce6ce63df8da2f3c4475 < fc5cc716dfbdc5fd5f373ff3b51358174cf88bfcaffected
LinuxLinux171bf93ce11f4c9929fdce6ce63df8da2f3c4475 < 89043e7ed63c7fc141e68ea5a79758ed24b6c699affected
LinuxLinux171bf93ce11f4c9929fdce6ce63df8da2f3c4475 < 14114d8148db07e7946fb06b56a50cfa425e26c7affected
LinuxLinux171bf93ce11f4c9929fdce6ce63df8da2f3c4475 < 4173d1277c00baeedaaca76783e98b8fd0e3c08daffected
LinuxLinux171bf93ce11f4c9929fdce6ce63df8da2f3c4475 < bbf41277df8b33fbedf4750a9300c147e8f104ebaffected
LinuxLinux171bf93ce11f4c9929fdce6ce63df8da2f3c4475 < ef768020366f47d23f39c4f57bcb03af6d1e24b3affected
LinuxLinux171bf93ce11f4c9929fdce6ce63df8da2f3c4475 < a4346c04d055bf7e184c18a73dbd23b6a9811118affected
LinuxLinux171bf93ce11f4c9929fdce6ce63df8da2f3c4475 < 0d707a33c84b371cb66120e198eed3374726ddd8affected
LinuxLinux171bf93ce11f4c9929fdce6ce63df8da2f3c4475 < 35fccce29feb3706f649726d410122dd81b92c18affected
LinuxLinux2.6.29affected
LinuxLinux0 < 2.6.29unaffected
LinuxLinux4.19.323 <= 4.19.*unaffected
LinuxLinux5.4.285 <= 5.4.*unaffected
LinuxLinux5.10.227 <= 5.10.*unaffected
LinuxLinux5.15.168 <= 5.15.*unaffected
LinuxLinux6.1.113 <= 6.1.*unaffected
LinuxLinux6.6.55 <= 6.6.*unaffected
LinuxLinux6.10.14 <= 6.10.*unaffected
LinuxLinux6.11.3 <= 6.11.*unaffected
LinuxLinux6.12 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References