CVE-2024-56596

Summary

In the Linux kernel, the following vulnerability has been resolved:

jfs: fix array-index-out-of-bounds in jfs_readdir

The stbl might contain some invalid values. Added a check to return error code in that case.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < b62f41aeec9d250144c53875b507c1d45ae8c8fcaffected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 97e693593162eef6851d232f0c8148169ed46a5caffected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 9efe72eefd4c4a7ce63b3e4d667d766d2b360cb4affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < ff9fc48fab0e1ea0d423c23c99b91bba178f0b05affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < e7d376f94f72b020f84e77278b150ec1cc27502caffected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 8ff7579554571d92e3deab168f5a7d7b146ed368affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 839f102efb168f02dfdd46717b7c6dddb26b015eaffected
LinuxLinux2.6.12affected
LinuxLinux0 < 2.6.12unaffected
LinuxLinux5.4.287 <= 5.4.*unaffected
LinuxLinux5.10.231 <= 5.10.*unaffected
LinuxLinux5.15.174 <= 5.15.*unaffected
LinuxLinux6.1.120 <= 6.1.*unaffected
LinuxLinux6.6.66 <= 6.6.*unaffected
LinuxLinux6.12.5 <= 6.12.*unaffected
LinuxLinux6.13 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

CVE Program Container

Additional References

References