Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
vulnrichmentLinuxVULNRICHMENT:CVE-2024-26685
HistoryApr 03, 2024 - 2:54 p.m.

CVE-2024-26685 nilfs2: fix potential bug in end_buffer_async_write

2024-04-0314:54:47
Linux
github.com
linux kernel
vulnerability
nilfs2
async write
bug fix
race condition
buffer async write

6.7 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

13.2%

JSON

In the Linux kernel, the following vulnerability has been resolved:

nilfs2: fix potential bug in end_buffer_async_write

According to a syzbot report, end_buffer_async_write(), which handles the
completion of block device writes, may detect abnormal condition of the
buffer async_write flag and cause a BUG_ON failure when using nilfs2.

Nilfs2 itself does not use end_buffer_async_write(). But, the async_write
flag is now used as a marker by commit 7f42ec394156 (“nilfs2: fix issue
with race condition of competition between segments for dirty blocks”) as
a means of resolving double list insertion of dirty blocks in
nilfs_lookup_dirty_data_buffers() and nilfs_lookup_node_buffers() and the
resulting crash.

This modification is safe as long as it is used for file data and b-tree
node blocks where the page caches are independent. However, it was
irrelevant and redundant to also introduce async_write for segment summary
and super root blocks that share buffers with the backing device. This
led to the possibility that the BUG_ON check in end_buffer_async_write
would fail as described above, if independent writebacks of the backing
device occurred in parallel.

The use of async_write for segment summary buffers has already been
removed in a previous change.

Fix this issue by removing the manipulation of the async_write flag for
the remaining super root block buffer.

CNA Affected

[
  {
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "vendor": "Linux",
    "product": "Linux",
    "versions": [
      {
        "status": "affected",
        "version": "7f42ec394156",
        "lessThan": "c4a09fdac625",
        "versionType": "git"
      },
      {
        "status": "affected",
        "version": "7f42ec394156",
        "lessThan": "d31c8721e816",
        "versionType": "git"
      },
      {
        "status": "affected",
        "version": "7f42ec394156",
        "lessThan": "f3e4963566f5",
        "versionType": "git"
      },
      {
        "status": "affected",
        "version": "7f42ec394156",
        "lessThan": "8fa90634ec3e",
        "versionType": "git"
      },
      {
        "status": "affected",
        "version": "7f42ec394156",
        "lessThan": "6589f0f72f8e",
        "versionType": "git"
      },
      {
        "status": "affected",
        "version": "7f42ec394156",
        "lessThan": "2c3bdba00283",
        "versionType": "git"
      },
      {
        "status": "affected",
        "version": "7f42ec394156",
        "lessThan": "626daab3811b",
        "versionType": "git"
      },
      {
        "status": "affected",
        "version": "7f42ec394156",
        "lessThan": "5bc09b397cbf",
        "versionType": "git"
      }
    ],
    "programFiles": [
      "fs/nilfs2/segment.c"
    ],
    "defaultStatus": "unaffected"
  },
  {
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "vendor": "Linux",
    "product": "Linux",
    "versions": [
      {
        "status": "affected",
        "version": "3.12"
      },
      {
        "status": "unaffected",
        "version": "0",
        "lessThan": "3.12",
        "versionType": "custom"
      },
      {
        "status": "unaffected",
        "version": "4.19.307",
        "versionType": "custom",
        "lessThanOrEqual": "4.19.*"
      },
      {
        "status": "unaffected",
        "version": "5.4.269",
        "versionType": "custom",
        "lessThanOrEqual": "5.4.*"
      },
      {
        "status": "unaffected",
        "version": "5.10.210",
        "versionType": "custom",
        "lessThanOrEqual": "5.10.*"
      },
      {
        "status": "unaffected",
        "version": "5.15.149",
        "versionType": "custom",
        "lessThanOrEqual": "5.15.*"
      },
      {
        "status": "unaffected",
        "version": "6.1.79",
        "versionType": "custom",
        "lessThanOrEqual": "6.1.*"
      },
      {
        "status": "unaffected",
        "version": "6.6.18",
        "versionType": "custom",
        "lessThanOrEqual": "6.6.*"
      },
      {
        "status": "unaffected",
        "version": "6.7.6",
        "versionType": "custom",
        "lessThanOrEqual": "6.7.*"
      },
      {
        "status": "unaffected",
        "version": "6.8",
        "versionType": "original_commit_for_fix",
        "lessThanOrEqual": "*"
      }
    ],
    "programFiles": [
      "fs/nilfs2/segment.c"
    ],
    "defaultStatus": "affected"
  }
]

Related

nvd 1
redhatcve 1
ubuntucve 1
cve 1
cvelist 1
debiancve 1
ubuntu 6
osv 10
openvas 12
nessus 15
slackware 1
debian 2
nvd
nvd
CVE-2024-26685
2024-04-03 15:15:52
redhatcve
redhatcve
CVE-2024-26685
2024-04-03 22:50:55
ubuntucve
ubuntucve
CVE-2024-26685
2024-04-03 00:00:00
cve
cve
CVE-2024-26685
2024-04-03 15:15:52
cvelist
cvelist
CVE-2024-26685 nilfs2: fix potential bug in end_buffer_async_write
2024-04-03 14:54:47
debiancve
debiancve
CVE-2024-26685
2024-04-03 15:15:52
ubuntu
ubuntu
Linux kernel (BlueField) vulnerabilities
2024-05-14 00:00:00
Linux kernel vulnerabilities
2024-05-07 00:00:00
Linux kernel vulnerabilities
2024-05-15 00:00:00
osv
osv
linux-bluefield vulnerabilities
2024-05-14 09:00:08
linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-gcp, linux-gcp-5.4, linux-gkeop, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-iot, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4, linux-xilinx-zynqmp vulnerabilities
2024-05-07 19:36:29
linux, linux-azure, linux-azure-5.15, linux-azure-fde, linux-azure-fde-5.15, linux-gcp, linux-gcp-5.15, linux-gke, linux-gkeop, linux-gkeop-5.15, linux-ibm, linux-ibm-5.15, linux-kvm, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-nvidia, linux-oracle, linux-oracle-5.15 vulnerabilities
2024-05-07 19:22:43
openvas
openvas
Ubuntu: Security Advisory (USN-6767-2)
2024-05-15 00:00:00
Ubuntu: Security Advisory (USN-6767-1)
2024-05-08 00:00:00
Ubuntu: Security Advisory (USN-6766-2)
2024-05-16 00:00:00
nessus
nessus
Ubuntu 18.04 LTS / 20.04 LTS : Linux kernel vulnerabilities (USN-6767-1)
2024-05-07 00:00:00
Ubuntu 20.04 LTS : Linux kernel (BlueField) vulnerabilities (USN-6767-2)
2024-05-14 00:00:00
Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel vulnerabilities (USN-6766-2)
2024-05-15 00:00:00
slackware
slackware
[slackware-security] Slackware 15.0 kernel
2024-06-05 19:11:11
debian
debian
[SECURITY] [DSA 5658-1] linux security update
2024-04-13 06:38:27
[SECURITY] [DSA 5681-1] linux security update
2024-05-06 18:31:39

6.7 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

13.2%

JSON
Related for VULNRICHMENT:CVE-2024-26685
nvd1redhatcve1ubuntucve1cve1cvelist1debiancve1ubuntu6osv10openvas12nessus15slackware1debian2