5.5

CVE-2024-46752

btrfs: replace BUG_ON() with error handling at update_ref_for_cow()

In the Linux kernel, the following vulnerability has been resolved:

btrfs: replace BUG_ON() with error handling at update_ref_for_cow()

Instead of a BUG_ON() just return an error, log an error message and
abort the transaction in case we find an extent buffer belonging to the
relocation tree that doesn't have the full backref flag set. This is
unexpected and should never happen (save for bugs or a potential bad
memory).
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version < 5.15.167
LinuxLinux Kernel Version >= 5.16 < 6.1.110
LinuxLinux Kernel Version >= 6.2 < 6.6.51
LinuxLinux Kernel Version >= 6.7 < 6.10.10
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.25% 0.156
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-404 Improper Resource Shutdown or Release

The product does not release or incorrectly releases a resource before it is made available for re-use.

https://git.kernel.org/stable/c/0fbac73a97286a7ec72229cb9b42d760a2c717ac
Patch
https://git.kernel.org/stable/c/41a0f85e268d72fe04f731b8ceea4748c2d65491
Patch
https://git.kernel.org/stable/c/b50857b96429a09fd3beed9f7f21b7bb7c433688
Patch
https://git.kernel.org/stable/c/b56329a782314fde5b61058e2a25097af7ccb675
Patch
https://git.kernel.org/stable/c/f895db00c65e5d77c437cce946da9ec29dcdf563
Patch
https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html