5.5
CVE-2024-38604
- EPSS 0.21%
- Veröffentlicht 19.06.2024 14:15:20
- Zuletzt bearbeitet 03.10.2025 15:22:50
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
block: refine the EOF check in blkdev_iomap_begin
In the Linux kernel, the following vulnerability has been resolved: block: refine the EOF check in blkdev_iomap_begin blkdev_iomap_begin rounds down the offset to the logical block size before stashing it in iomap->offset and checking that it still is inside the inode size. Check the i_size check to the raw pos value so that we don't try a zero size write if iter->pos is unaligned.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 6.6 < 6.6.33
Linux ≫ Linux Kernel Version >= 6.7 < 6.8.12
Linux ≫ Linux Kernel Version >= 6.9 < 6.9.3
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.21% | 0.107 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
https://git.kernel.org/stable/c/0c12028aec837f5a002009bbf68d179d506510e8
https://git.kernel.org/stable/c/10b723bcba8986537a484aa94dbfc9093fd776a1
https://git.kernel.org/stable/c/72c54e063c32aeb38d43a2bd897821e6e5a1757d
https://git.kernel.org/stable/c/910717920c8c3f9386277a44c44d448058a18084