Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistLinuxCVELIST:CVE-2024-26685
HistoryApr 03, 2024 - 2:54 p.m.

CVE-2024-26685 nilfs2: fix potential bug in end_buffer_async_write

2024-04-0314:54:47
Linux
www.cve.org
1
linux kernel
vulnerability
syzbot report
block device
nilfs2
race condition
dirty blocks
crash
segment summary
super root block
buffer
bug fix

7.6 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

13.1%

JSON

In the Linux kernel, the following vulnerability has been resolved:

nilfs2: fix potential bug in end_buffer_async_write

According to a syzbot report, end_buffer_async_write(), which handles the
completion of block device writes, may detect abnormal condition of the
buffer async_write flag and cause a BUG_ON failure when using nilfs2.

Nilfs2 itself does not use end_buffer_async_write(). But, the async_write
flag is now used as a marker by commit 7f42ec394156 (“nilfs2: fix issue
with race condition of competition between segments for dirty blocks”) as
a means of resolving double list insertion of dirty blocks in
nilfs_lookup_dirty_data_buffers() and nilfs_lookup_node_buffers() and the
resulting crash.

This modification is safe as long as it is used for file data and b-tree
node blocks where the page caches are independent. However, it was
irrelevant and redundant to also introduce async_write for segment summary
and super root blocks that share buffers with the backing device. This
led to the possibility that the BUG_ON check in end_buffer_async_write
would fail as described above, if independent writebacks of the backing
device occurred in parallel.

The use of async_write for segment summary buffers has already been
removed in a previous change.

Fix this issue by removing the manipulation of the async_write flag for
the remaining super root block buffer.

CNA Affected

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "fs/nilfs2/segment.c"
    ],
    "versions": [
      {
        "version": "7f42ec394156",
        "lessThan": "c4a09fdac625",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "7f42ec394156",
        "lessThan": "d31c8721e816",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "7f42ec394156",
        "lessThan": "f3e4963566f5",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "7f42ec394156",
        "lessThan": "8fa90634ec3e",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "7f42ec394156",
        "lessThan": "6589f0f72f8e",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "7f42ec394156",
        "lessThan": "2c3bdba00283",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "7f42ec394156",
        "lessThan": "626daab3811b",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "7f42ec394156",
        "lessThan": "5bc09b397cbf",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "fs/nilfs2/segment.c"
    ],
    "versions": [
      {
        "version": "3.12",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "3.12",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "4.19.307",
        "lessThanOrEqual": "4.19.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.4.269",
        "lessThanOrEqual": "5.4.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.10.210",
        "lessThanOrEqual": "5.10.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.15.149",
        "lessThanOrEqual": "5.15.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.1.79",
        "lessThanOrEqual": "6.1.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.6.18",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.7.6",
        "lessThanOrEqual": "6.7.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.8",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Related

nvd 1
debiancve 1
ubuntucve 1
redhatcve 1
cve 1
ubuntu 6
osv 8
nessus 12
openvas 11
slackware 1
debian 2
nvd
nvd
CVE-2024-26685
2024-04-03 15:15:52
debiancve
debiancve
CVE-2024-26685
2024-04-03 15:15:52
ubuntucve
ubuntucve
CVE-2024-26685
2024-04-03 00:00:00
redhatcve
redhatcve
CVE-2024-26685
2024-04-03 22:50:55
cve
cve
CVE-2024-26685
2024-04-03 15:15:52
ubuntu
ubuntu
Linux kernel (BlueField) vulnerabilities
2024-05-14 00:00:00
Linux kernel vulnerabilities
2024-05-07 00:00:00
Linux kernel vulnerabilities
2024-05-15 00:00:00
osv
osv
linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-gcp, linux-gcp-5.4, linux-gkeop, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-iot, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4, linux-xilinx-zynqmp vulnerabilities
2024-05-07 19:36:29
linux-bluefield vulnerabilities
2024-05-14 09:00:08
linux, linux-azure, linux-azure-5.15, linux-azure-fde, linux-azure-fde-5.15, linux-gcp, linux-gcp-5.15, linux-gke, linux-gkeop, linux-gkeop-5.15, linux-ibm, linux-ibm-5.15, linux-kvm, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-nvidia, linux-oracle, linux-oracle-5.15 vulnerabilities
2024-05-07 19:22:43
nessus
nessus
Ubuntu 18.04 LTS / 20.04 LTS : Linux kernel vulnerabilities (USN-6767-1)
2024-05-07 00:00:00
Ubuntu 20.04 LTS : Linux kernel (BlueField) vulnerabilities (USN-6767-2)
2024-05-14 00:00:00
Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel vulnerabilities (USN-6766-2)
2024-05-15 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-6767-1)
2024-05-08 00:00:00
Ubuntu: Security Advisory (USN-6767-2)
2024-05-15 00:00:00
Ubuntu: Security Advisory (USN-6766-2)
2024-05-16 00:00:00
slackware
slackware
[slackware-security] Slackware 15.0 kernel
2024-06-05 19:11:11
debian
debian
[SECURITY] [DSA 5658-1] linux security update
2024-04-13 06:38:27
[SECURITY] [DSA 5681-1] linux security update
2024-05-06 18:31:39

7.6 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

13.1%

JSON
Related for CVELIST:CVE-2024-26685
nvd1debiancve1ubuntucve1redhatcve1cve1ubuntu6osv8nessus12openvas11slackware1debian2