We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-50202

nilfs2: propagate directory read errors from nilfs_find_entry()



Description

In the Linux kernel, the following vulnerability has been resolved: nilfs2: propagate directory read errors from nilfs_find_entry() Syzbot reported that a task hang occurs in vcs_open() during a fuzzing test for nilfs2. The root cause of this problem is that in nilfs_find_entry(), which searches for directory entries, ignores errors when loading a directory page/folio via nilfs_get_folio() fails. If the filesystem images is corrupted, and the i_size of the directory inode is large, and the directory page/folio is successfully read but fails the sanity check, for example when it is zero-filled, nilfs_check_folio() may continue to spit out error messages in bursts. Fix this issue by propagating the error to the callers when loading a page/folio fails in nilfs_find_entry(). The current interface of nilfs_find_entry() and its callers is outdated and cannot propagate error codes such as -EIO and -ENOMEM returned via nilfs_find_entry(), so fix it together.

Reserved 2024-10-21 | Published 2024-11-08 | Updated 2024-11-19 | Assigner Linux

Product status

Default status
unaffected

2ba466d74ed7 before bb857ae1efd3
affected

2ba466d74ed7 before b4b3dc9e7e60
affected

2ba466d74ed7 before c1d0476885d7
affected

2ba466d74ed7 before edf814605726
affected

2ba466d74ed7 before 270a6f9df35f
affected

2ba466d74ed7 before 9698088ac770
affected

2ba466d74ed7 before efa810b15a25
affected

2ba466d74ed7 before 08cfa12adf88
affected

Default status
affected

2.6.30
affected

Any version before 2.6.30
unaffected

4.19.323
unaffected

5.4.285
unaffected

5.10.228
unaffected

5.15.169
unaffected

6.1.114
unaffected

6.6.58
unaffected

6.11.5
unaffected

6.12
unaffected

References

git.kernel.org/...c/bb857ae1efd3138c653239ed1e7aef14e1242c81

git.kernel.org/...c/b4b3dc9e7e604be98a222e9f941f5e93798ca475

git.kernel.org/...c/c1d0476885d708a932980b0f28cd90d9bd71db39

git.kernel.org/...c/edf8146057264191d5bfe5b91773f13d936dadd3

git.kernel.org/...c/270a6f9df35fa2aea01ec23770dc9b3fc9a12989

git.kernel.org/...c/9698088ac7704e260f492d9c254e29ed7dd8729a

git.kernel.org/...c/efa810b15a25531cbc2f527330947b9fe16916e7

git.kernel.org/...c/08cfa12adf888db98879dbd735bc741360a34168

cve.org (CVE-2024-50202)

nvd.nist.gov (CVE-2024-50202)

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-50202

Support options

Helpdesk Chat, Email, Knowledgebase
Telegram Chat
Subscribe to our newsletter to learn more about our work.