5.5
CVE-2024-46753
- EPSS 0.24%
- Veröffentlicht 18.09.2024 08:15:04
- Zuletzt bearbeitet 03.11.2025 20:16:31
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
btrfs: handle errors from btrfs_dec_ref() properly
In the Linux kernel, the following vulnerability has been resolved: btrfs: handle errors from btrfs_dec_ref() properly In walk_up_proc() we BUG_ON(ret) from btrfs_dec_ref(). This is incorrect, we have proper error handling here, return the error.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version < 5.10.236
Linux ≫ Linux Kernel Version >= 5.11 < 5.15.180
Linux ≫ Linux Kernel Version >= 5.16 < 6.1.134
Linux ≫ Linux Kernel Version >= 6.2 < 6.6.87
Linux ≫ Linux Kernel Version >= 6.7 < 6.10.10
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.24% | 0.144 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
CWE-617 Reachable Assertion
The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary.
https://git.kernel.org/stable/c/5eb178f373b4f16f3b42d55ff88fc94dd95b93b1
https://git.kernel.org/stable/c/a7f16a7a709845855cb5a0e080a52bda5873f9de
https://git.kernel.org/stable/c/0e4840ae09f375381167000ce47424818fcbcc7c
https://git.kernel.org/stable/c/2c4fe45351e544da4b8f10c74b277117a4fa7869
https://git.kernel.org/stable/c/67e4ca7ddc67ef949326b4dc404a9678bbe67d72
https://git.kernel.org/stable/c/9c8237021b53d52357c0de07a768582fafb2791d
https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html
https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html