CBL Mariner 2.0 Security Update: kernel (CVE-2024-42311)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42311 advisory. - In the Linux kernel, the following vulnerability has been resolved: hfs: fix to initialize fields of...

CVE-2024-42311

A flaw was found in the HFS filesystem in the Linux kernel due to uninitialized fields in the hfsinodeinfo structure. The .tzsecondswest, .cachedstart, and .cachedblocks fields are not initialized after calling hfsallocinode. This omission led to undefined behavior and potential security issues, ...

CVE-2024-42311

In the Linux kernel, the following vulnerability has been resolved: hfs: fix to initialize fields of hfsinodeinfo after hfsallocinode Syzbot reports uninitialized value access issue as below: loop0: detected capacity change from 0 to 64 ===================================================== BUG:...

CVE-2024-42311

In the Linux kernel, the following vulnerability has been resolved: hfs: fix to initialize fields of hfsinodeinfo after hfsallocinode Syzbot reports uninitialized value access issue as below: loop0: detected capacity change from 0 to 64 ===================================================== BUG:...

CVE-2024-42311

In the Linux kernel, the following vulnerability has been resolved: hfs: fix to initialize fields of hfsinodeinfo after hfsallocinode Syzbot reports uninitialized value access issue as below: loop0: detected capacity change from 0 to 64 ===================================================== BUG:...

CVE-2024-42311 hfs: fix to initialize fields of hfs_inode_info after hfs_alloc_inode()

In the Linux kernel, the following vulnerability has been resolved: hfs: fix to initialize fields of hfsinodeinfo after hfsallocinode Syzbot reports uninitialized value access issue as below: loop0: detected capacity change from 0 to 64 ===================================================== BUG:...

CVE-2024-42311

The CVE-2024-42311 issue is a Linux kernel vulnerability in the HFS filesystem where hfs_inode_info fields (.tz_secondswest, .cached_start, .cached_blocks) were not initialized after hfs_alloc_inode(). The connected advisories confirm a fix was applied in the kernel (patches referenced in multipl...

CVE-2024-42311 hfs: fix to initialize fields of hfs_inode_info after hfs_alloc_inode()

In the Linux kernel, the following vulnerability has been resolved: hfs: fix to initialize fields of hfsinodeinfo after hfsallocinode Syzbot reports uninitialized value access issue as below: loop0: detected capacity change from 0 to 64 ===================================================== BUG:...