CVE-2024-47726
f2fs: fix to wait dio completion
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.8%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
21 Oct 2024Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
In the Linux kernel, the following vulnerability has been resolved:
f2fs: fix to wait dio completion
It should wait all existing dio write IOs before block removal,
otherwise, previous direct write IO may overwrite data in the
block which may be reused by other inode.
Affected products
Linux · LinuxWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://git.kernel.org/stable/c/3aa5254d80969cb576601fb9fec7a188cc8dc169https://git.kernel.org/stable/c/7be13b73409b553d9d9a6cbb042b4d19e2631cc7https://git.kernel.org/stable/c/96cfeb0389530ae32ade8a48ae3ae1ac3b6c009dhttps://git.kernel.org/stable/c/c2a7fc514637f640ff55c3f3e3ed879970814a3fhttps://git.kernel.org/stable/c/e3db757ff9b7101ae68650ac5f6dd5743b68164ehttps://git.kernel.org/stable/c/f81302decd64245bb1bd154ecae0f65a9ee21f04https://lists.debian.org/debian-lts-announce/2025/03/msg00028.htmlhttps://lists.debian.org/debian-lts-announce/2025/05/msg00030.html