THREATINT

We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Fathom (Privacy friendly web analytics)
Zendesk (Helpdesk and Chat)

Ok

Home | EN
Support
CVE
PUBLISHED

CVE-2024-39482

bcache: fix variable length array abuse in btree_iter

AssignerLinux
Reserved2024-06-25
Published2024-07-05
Updated2024-07-15

Description

In the Linux kernel, the following vulnerability has been resolved: bcache: fix variable length array abuse in btree_iter btree_iter is used in two ways: either allocated on the stack with a fixed size MAX_BSETS, or from a mempool with a dynamic size based on the specific cache set. Previously, the struct had a fixed-length array of size MAX_BSETS which was indexed out-of-bounds for the dynamically-sized iterators, which causes UBSAN to complain. This patch uses the same approach as in bcachefs's sort_iter and splits the iterator into a btree_iter with a flexible array member and a btree_iter_stack which embeds a btree_iter as well as a fixed-length data array.

Product status

Default status
unaffected

1da177e4c3f4 before 2c3d7b03b658
affected

1da177e4c3f4 before 5a1922adc579
affected

1da177e4c3f4 before 934e1e433185
affected

1da177e4c3f4 before 6479b9f41583
affected

1da177e4c3f4 before 0c31344e22dd
affected

1da177e4c3f4 before 3a861560ccb3
affected

Default status
affected

5.10.221
unaffected

5.15.162
unaffected

6.1.94
unaffected

6.6.34
unaffected

6.9.5
unaffected

6.10
unaffected

References

https://git.kernel.org/stable/c/2c3d7b03b658dc8bfa6112b194b67b92a87e081b

https://git.kernel.org/stable/c/5a1922adc5798b7ec894cd3f197afb6f9591b023

https://git.kernel.org/stable/c/934e1e4331859183a861f396d7dfaf33cb5afb02

https://git.kernel.org/stable/c/6479b9f41583b013041943c4602e1ad61cec8148

https://git.kernel.org/stable/c/0c31344e22dd8d6b1394c6e4c41d639015bdc671

https://git.kernel.org/stable/c/3a861560ccb35f2a4f0a4b8207fa7c2a35fc7f31

cve.org CVE-2024-39482

nvd.nist.gov CVE-2024-39482

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-39482
© Copyright 2024 THREATINT. Made in Cyprus with +