CVE: CVE-2024-37078

Descrizione: “The Linux kernel has been fixed to address a vulnerability related to the lack of writeback flag on the nilfs2 service. This vulnerability causes a kernel bug in the folio/page writeback routine or end routine (__folio_start_writeback in the log below) when writing to a block device. The bug occurs at mm/page-writeback.c, line 3070! The error message indicates an invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI. The crash trace points to the following: nilfs_segctor_do_construct+0x4654/0x69d0 [nilfs2] nilfs_segctor_construct+0x181/0x6b0 [nilfs2] nilfs_segctor_thread+0x548/0x11c0 [nilfs2] kthread+0x2f0/0x390 ret_from_fork+0x4b/0x80 ret_from_fork_asm+0x1a/0x30 This issue stems from the kernel not waiting for ongoing folio/page writeback when writing to the backing device, leading to inconsistent writeback states. The fix involves waiting for ongoing writeback operations before writing to the backing device.”

Vettore di attacco

Riferimenti esterni

• https://git.kernel.org/stable/c/95f6f81e50d858a7c9aa7c795ec14a0ac3819118
• https://git.kernel.org/stable/c/a75b8f493dfc48aa38c518430bd9e03b53bffebe
• https://git.kernel.org/stable/c/0ecfe3a92869a59668d27228dabbd7965e83567f
• https://git.kernel.org/stable/c/33900d7eae616647e179eee1c66ebe654ee39627
• https://git.kernel.org/stable/c/271dcd977ccda8c7a26e360425ae7b4db7d2ecc0
• https://git.kernel.org/stable/c/614d397be0cf43412b3f94a0f6460eddced8ce92
• https://git.kernel.org/stable/c/1f3bff69f1214fe03a02bc650d5bbfaa6e65ae7d
• https://git.kernel.org/stable/c/a4ca369ca221bb7e06c725792ac107f0e48e82e7

Prodotti interessati

• Linux – Linux
• Linux – Linux

Relazioni con altri prodotti

Produttore:Linux
Prodotto: Linux
Anno: 2024
CWE:
CVSS: 0.0

Ulteriori risorse disponibili

• Vulnerabilità scoperte nello stesso anno (2024)