5.5

CVE-2024-42304

ext4: make sure the first directory block is not a hole

In the Linux kernel, the following vulnerability has been resolved:

ext4: make sure the first directory block is not a hole

The syzbot constructs a directory that has no dirblock but is non-inline,
i.e. the first directory block is a hole. And no errors are reported when
creating files in this directory in the following flow.

    ext4_mknod
     ...
      ext4_add_entry
        // Read block 0
        ext4_read_dirblock(dir, block, DIRENT)
          bh = ext4_bread(NULL, inode, block, 0)
          if (!bh && (type == INDEX || type == DIRENT_HTREE))
          // The first directory block is a hole
          // But type == DIRENT, so no error is reported.

After that, we get a directory block without '.' and '..' but with a valid
dentry. This may cause some code that relies on dot or dotdot (such as
make_indexed_dir()) to crash.

Therefore when ext4_read_dirblock() finds that the first directory block
is a hole report that the filesystem is corrupted and return an error to
avoid loading corrupted data from disk causing something bad.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 4.9.187 < 4.10
LinuxLinux Kernel Version >= 4.14.135 < 4.15
LinuxLinux Kernel Version >= 4.19.62 < 4.19.320
LinuxLinux Kernel Version >= 5.1.21 < 5.2
LinuxLinux Kernel Version >= 5.2.4 < 5.4.282
LinuxLinux Kernel Version >= 5.5 < 5.10.224
LinuxLinux Kernel Version >= 5.11 < 5.15.165
LinuxLinux Kernel Version >= 5.16 < 6.1.103
LinuxLinux Kernel Version >= 6.2 < 6.6.44
LinuxLinux Kernel Version >= 6.7 < 6.10.3
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.22% 0.128
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Es wurden noch keine Informationen zu CWE veröffentlicht.
https://git.kernel.org/stable/c/299bc6ffa57e04e74c6cce866d6c0741fb4897a1
Patch
https://git.kernel.org/stable/c/9771e3d8365ae1dd5e8846a204cb9af14e3e656a
Patch
https://git.kernel.org/stable/c/b609753cbbd38f8c0affd4956c0af178348523ac
Patch
https://git.kernel.org/stable/c/c3893d9de8ee153baac56d127d844103488133b5
Patch
https://git.kernel.org/stable/c/d81d7e347d1f1f48a5634607d39eb90c161c8afe
Patch
https://git.kernel.org/stable/c/de2a011a13a46468a6e8259db58b1b62071fe136
Patch
https://git.kernel.org/stable/c/e02f9941e8c011aa3eafa799def6a134ce06bcfa
Patch
https://git.kernel.org/stable/c/f9ca51596bbfd0f9c386dd1c613c394c78d9e5e6
Patch
https://lists.debian.org/debian-lts-announce/2024/10/msg00003.html
https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
https://cert-portal.siemens.com/productcert/html/ssa-265688.html