CVE-2024-50218
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
ocfs2: pass u64 to ocfs2_truncate_inline maybe overflow
Syzbot reported a kernel BUG in ocfs2_truncate_inline. There are two reasons for this: first, the parameter value passed is greater than ocfs2_max_inline_data_with_xattr, second, the start and end parameters of ocfs2_truncate_inline are "unsigned int".
So, we need to add a sanity check for byte_start and byte_len right before ocfs2_truncate_inline() in ocfs2_remove_inode_range(), if they are greater than ocfs2_max_inline_data_with_xattr return -EINVAL.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 1afc32b952335f665327a1a9001ba1b44bb76fd9 < 27d95867bee806cdc448d122bd99f1d8b0544035 | affected |
| Linux | Linux | 1afc32b952335f665327a1a9001ba1b44bb76fd9 < 95fbed8ae8c32c0977e6be1721c190d8fea23f2f | affected |
| Linux | Linux | 1afc32b952335f665327a1a9001ba1b44bb76fd9 < 70767689ec6ee5f05fb0a2c17d7ec1927946e486 | affected |
| Linux | Linux | 1afc32b952335f665327a1a9001ba1b44bb76fd9 < ecd62f684386fa64f9c0cea92eea361f4e6444c2 | affected |
| Linux | Linux | 1afc32b952335f665327a1a9001ba1b44bb76fd9 < 2fe5d62e122b040ce7fc4d31aa7fa96ae328cefc | affected |
| Linux | Linux | 1afc32b952335f665327a1a9001ba1b44bb76fd9 < 88f97a4b5843ce21c1286e082c02a5fb4d8eb473 | affected |
| Linux | Linux | 1afc32b952335f665327a1a9001ba1b44bb76fd9 < 0b6b8c2055784261de3fb641c5d0d63964318e8f | affected |
| Linux | Linux | 1afc32b952335f665327a1a9001ba1b44bb76fd9 < bc0a2f3a73fcdac651fca64df39306d1e5ebe3b0 | affected |
| Linux | Linux | 2.6.24 | affected |
| Linux | Linux | 0 < 2.6.24 | unaffected |
| Linux | Linux | 4.19.323 <= 4.19.* | unaffected |
| Linux | Linux | 5.4.285 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.229 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.171 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.116 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.60 <= 6.6.* | unaffected |
| Linux | Linux | 6.11.7 <= 6.11.* | unaffected |
| Linux | Linux | 6.12 <= * | unaffected |
Weaknesses
ADP Enrichment
CVE Program Container
Additional References
- https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html
- https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
References
- https://git.kernel.org/stable/c/27d95867bee806cdc448d122bd99f1d8b0544035
- https://git.kernel.org/stable/c/95fbed8ae8c32c0977e6be1721c190d8fea23f2f
- https://git.kernel.org/stable/c/70767689ec6ee5f05fb0a2c17d7ec1927946e486
- https://git.kernel.org/stable/c/ecd62f684386fa64f9c0cea92eea361f4e6444c2
- https://git.kernel.org/stable/c/2fe5d62e122b040ce7fc4d31aa7fa96ae328cefc
- https://git.kernel.org/stable/c/88f97a4b5843ce21c1286e082c02a5fb4d8eb473
- https://git.kernel.org/stable/c/0b6b8c2055784261de3fb641c5d0d63964318e8f
- https://git.kernel.org/stable/c/bc0a2f3a73fcdac651fca64df39306d1e5ebe3b0
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.