We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-47757

nilfs2: fix potential oob read in nilfs_btree_check_delete()



Description

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix potential oob read in nilfs_btree_check_delete() The function nilfs_btree_check_delete(), which checks whether degeneration to direct mapping occurs before deleting a b-tree entry, causes memory access outside the block buffer when retrieving the maximum key if the root node has no entries. This does not usually happen because b-tree mappings with 0 child nodes are never created by mkfs.nilfs2 or nilfs2 itself. However, it can happen if the b-tree root node read from a device is configured that way, so fix this potential issue by adding a check for that case.

Reserved 2024-09-30 | Published 2024-10-21 | Updated 2024-12-19 | Assigner Linux

Product status

Default status
unaffected

17c76b0104e4a6513983777e1a17e0297a12b0c4 before f3a9859767c7aea758976f5523903d247e585129
affected

17c76b0104e4a6513983777e1a17e0297a12b0c4 before ed76d381dae125b81d09934e365391a656249da8
affected

17c76b0104e4a6513983777e1a17e0297a12b0c4 before d20674f31626e0596ae4c1d9401dfb6739b81b58
affected

17c76b0104e4a6513983777e1a17e0297a12b0c4 before c4f8554996e8ada3be872dfb8f60e93bcf15fb27
affected

17c76b0104e4a6513983777e1a17e0297a12b0c4 before a8abfda768b9f33630cfbc4af6c4214f1e5681b0
affected

17c76b0104e4a6513983777e1a17e0297a12b0c4 before 257f9e5185eb6de83377caea686c306e22e871f2
affected

17c76b0104e4a6513983777e1a17e0297a12b0c4 before a33e967b681e088a125b979975c93e3453e686cd
affected

17c76b0104e4a6513983777e1a17e0297a12b0c4 before c4cbcc64bb31e67e02940ce060cc77f7180564cf
affected

17c76b0104e4a6513983777e1a17e0297a12b0c4 before f9c96351aa6718b42a9f42eaf7adce0356bdb5e8
affected

Default status
affected

2.6.30
affected

Any version before 2.6.30
unaffected

4.19.323
unaffected

5.4.285
unaffected

5.10.227
unaffected

5.15.168
unaffected

6.1.113
unaffected

6.6.54
unaffected

6.10.13
unaffected

6.11.2
unaffected

6.12
unaffected

References

git.kernel.org/...c/f3a9859767c7aea758976f5523903d247e585129

git.kernel.org/...c/ed76d381dae125b81d09934e365391a656249da8

git.kernel.org/...c/d20674f31626e0596ae4c1d9401dfb6739b81b58

git.kernel.org/...c/c4f8554996e8ada3be872dfb8f60e93bcf15fb27

git.kernel.org/...c/a8abfda768b9f33630cfbc4af6c4214f1e5681b0

git.kernel.org/...c/257f9e5185eb6de83377caea686c306e22e871f2

git.kernel.org/...c/a33e967b681e088a125b979975c93e3453e686cd

git.kernel.org/...c/c4cbcc64bb31e67e02940ce060cc77f7180564cf

git.kernel.org/...c/f9c96351aa6718b42a9f42eaf7adce0356bdb5e8

cve.org (CVE-2024-47757)

nvd.nist.gov (CVE-2024-47757)

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-47757

Support options

Helpdesk Chat, Email, Knowledgebase
Telegram Chat
Subscribe to our newsletter to learn more about our work.

© Copyright 2024 THREATINT
Made in Cyprus with +
 System status
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
Error loading Crisp.chat. Please check your web content filter and browser plugins.