CVE-2024-50230
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
nilfs2: fix kernel bug due to missing clearing of checked flag
Syzbot reported that in directory operations after nilfs2 detects filesystem corruption and degrades to read-only, __block_write_begin_int(), which is called to prepare block writes, may fail the BUG_ON check for accesses exceeding the folio/page size, triggering a kernel bug.
This was found to be because the "checked" flag of a page/folio was not cleared when it was discarded by nilfs2's own routine, which causes the sanity check of directory entries to be skipped when the directory page/folio is reloaded. So, fix that.
This was necessary when the use of nilfs2's own page discard routine was applied to more than just metadata files.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 8c26c4e2694a163d525976e804d81cd955bbb40c < 994b2fa13a6c9cf3feca93090a9c337d48e3d60d | affected |
| Linux | Linux | 8c26c4e2694a163d525976e804d81cd955bbb40c < 64afad73e4623308d8943645e5631f2c7a2d7971 | affected |
| Linux | Linux | 8c26c4e2694a163d525976e804d81cd955bbb40c < aa0cee46c5d3fd9a39575a4c8a4f65f25f095b89 | affected |
| Linux | Linux | 8c26c4e2694a163d525976e804d81cd955bbb40c < f05dbebb8ee34882505d53d83af7d18f28a49248 | affected |
| Linux | Linux | 8c26c4e2694a163d525976e804d81cd955bbb40c < cd0cdb51b15203fa27d4b714be83b7dfffa0b752 | affected |
| Linux | Linux | 8c26c4e2694a163d525976e804d81cd955bbb40c < f2f1fa446676c21edb777e6d2bc4fa8f956fab68 | affected |
| Linux | Linux | 8c26c4e2694a163d525976e804d81cd955bbb40c < 56c6171932a7fb267ac6cb4ff8759b93ee1d0e2e | affected |
| Linux | Linux | 8c26c4e2694a163d525976e804d81cd955bbb40c < 41e192ad2779cae0102879612dfe46726e4396aa | affected |
| Linux | Linux | 3.10 | affected |
| Linux | Linux | 0 < 3.10 | unaffected |
| Linux | Linux | 4.19.323 <= 4.19.* | unaffected |
| Linux | Linux | 5.4.285 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.229 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.171 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.116 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.60 <= 6.6.* | unaffected |
| Linux | Linux | 6.11.7 <= 6.11.* | unaffected |
| Linux | Linux | 6.12 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
CVE Program Container
Additional References
- https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html
- https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
References
- https://git.kernel.org/stable/c/994b2fa13a6c9cf3feca93090a9c337d48e3d60d
- https://git.kernel.org/stable/c/64afad73e4623308d8943645e5631f2c7a2d7971
- https://git.kernel.org/stable/c/aa0cee46c5d3fd9a39575a4c8a4f65f25f095b89
- https://git.kernel.org/stable/c/f05dbebb8ee34882505d53d83af7d18f28a49248
- https://git.kernel.org/stable/c/cd0cdb51b15203fa27d4b714be83b7dfffa0b752
- https://git.kernel.org/stable/c/f2f1fa446676c21edb777e6d2bc4fa8f956fab68
- https://git.kernel.org/stable/c/56c6171932a7fb267ac6cb4ff8759b93ee1d0e2e
- https://git.kernel.org/stable/c/41e192ad2779cae0102879612dfe46726e4396aa
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.