CVE-2024-42160

EPSS 0.02%
Veröffentlicht 30.07.2024 08:15:07
Zuletzt bearbeitet 03.11.2025 22:17:43
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

f2fs: check validation of fault attrs in f2fs_build_fault_attr()

- It missed to check validation of fault attrs in parse_options(),
let's fix to add check condition in f2fs_build_fault_attr().
- Use f2fs_build_fault_attr() in __sbi_store() to clean up code.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 9

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version < 6.1.98

Linux ≫ Linux Kernel Version >= 6.2 < 6.6.39

Linux ≫ Linux Kernel Version >= 6.7 < 6.9.9

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.026

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-754 Improper Check for Unusual or Exceptional Conditions

The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.

https://git.kernel.org/stable/c/44958ca9e400f57bd0478115519ffc350fcee61e

Patch

https://git.kernel.org/stable/c/4ed886b187f47447ad559619c48c086f432d2b77

Patch

https://git.kernel.org/stable/c/bc84dd2c33e0c10fd90d60f0cfc0bfb504d4692d

Patch

https://git.kernel.org/stable/c/ecb641f424d6d1f055d149a15b892edcc92c504b

Patch

https://git.kernel.org/stable/c/6e5b601706ce05d94338cad598736d96bb8096c8

https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html

https://nvd.nist.gov/vuln/detail/CVE-2024-42160

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-42160

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-42160

EUVD