-

CVE-2024-26955

EPSS 0.04%
Published 01.05.2024 06:15:11
Last modified 21.11.2024 09:03:28
Source 416baaa9-dc9f-4396-8d5f-8c081f
Teams watchlist Login
Open Login

In the Linux kernel, the following vulnerability has been resolved:

nilfs2: prevent kernel bug at submit_bh_wbc()

Fix a bug where nilfs_get_block() returns a successful status when
searching and inserting the specified block both fail inconsistently.  If
this inconsistent behavior is not due to a previously fixed bug, then an
unexpected race is occurring, so return a temporary error -EAGAIN instead.

This prevents callers such as __block_write_begin_int() from requesting a
read into a buffer that is not mapped, which would cause the BUG_ON check
for the BH_Mapped flag in submit_bh_wbc() to fail.

Affected products Warnungen 0 Metrics 1 CWE 0 References 14

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

This information is available to logged-in users.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

VendorLinux

≫

Product Linux

Default Statusunaffected

Version < 91e4c4595fae5e87069e44687ae879091783c183

Version 1f5abe7e7dbcd83e73212c6cb135a6106cea6a0b

Status affected

Version < 32eaee72e96590a75445c8a6c7c1057673b47e07

Version 1f5abe7e7dbcd83e73212c6cb135a6106cea6a0b

Status affected

Version < f0fe7ad5aff4f0fcf988913313c497de85f1e186

Version 1f5abe7e7dbcd83e73212c6cb135a6106cea6a0b

Status affected

Version < ca581d237f3b8539c044205bb003de71d75d227c

Version 1f5abe7e7dbcd83e73212c6cb135a6106cea6a0b

Status affected

Version < 192e9f9078c96be30b31c4b44d6294b24520fce5

Version 1f5abe7e7dbcd83e73212c6cb135a6106cea6a0b

Status affected

Version < 0c8aa4cfda4e4adb15d5b6536d155eca9c9cd44c

Version 1f5abe7e7dbcd83e73212c6cb135a6106cea6a0b

Status affected

Version < 48d443d200237782dc82e6b60663ec414ef02e39

Version 1f5abe7e7dbcd83e73212c6cb135a6106cea6a0b

Status affected

Version < 76ffbe911e2798c7296968f5fd72f7bf67207a8d

Version 1f5abe7e7dbcd83e73212c6cb135a6106cea6a0b

Status affected

Version < 269cdf353b5bdd15f1a079671b0f889113865f20

Version 1f5abe7e7dbcd83e73212c6cb135a6106cea6a0b

Status affected

VendorLinux

≫

Product Linux

Default Statusaffected

Version 2.6.30

Status affected

Version < 2.6.30

Version 0

Status unaffected

Version <= 4.19.*

Version 4.19.312

Status unaffected

Version <= 5.4.*

Version 5.4.274

Status unaffected

Version <= 5.10.*

Version 5.10.215

Status unaffected

Version <= 5.15.*

Version 5.15.154

Status unaffected

Version <= 6.1.*

Version 6.1.84

Status unaffected

Version <= 6.6.*

Version 6.6.24

Status unaffected

Version <= 6.7.*

Version 6.7.12

Status unaffected

Version <= 6.8.*

Version 6.8.3

Status unaffected

Version <= *

Version 6.9

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.04%	0.096

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string

https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html

https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html

https://git.kernel.org/stable/c/0c8aa4cfda4e4adb15d5b6536d155eca9c9cd44c

https://git.kernel.org/stable/c/192e9f9078c96be30b31c4b44d6294b24520fce5

https://git.kernel.org/stable/c/269cdf353b5bdd15f1a079671b0f889113865f20

https://git.kernel.org/stable/c/32eaee72e96590a75445c8a6c7c1057673b47e07

https://git.kernel.org/stable/c/48d443d200237782dc82e6b60663ec414ef02e39

https://git.kernel.org/stable/c/76ffbe911e2798c7296968f5fd72f7bf67207a8d

https://git.kernel.org/stable/c/91e4c4595fae5e87069e44687ae879091783c183

https://git.kernel.org/stable/c/ca581d237f3b8539c044205bb003de71d75d227c

https://git.kernel.org/stable/c/f0fe7ad5aff4f0fcf988913313c497de85f1e186

https://nvd.nist.gov/vuln/detail/CVE-2024-26955

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-26955

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-26955

EUVD