CVE-2024-27032
f2fs: fix to avoid potential panic during recovery
Vexday Risk Score
13Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 6.3EPSS 0.3%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
01 may 2024Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
In the Linux kernel, the following vulnerability has been resolved:
f2fs: fix to avoid potential panic during recovery
During recovery, if FAULT_BLOCK is on, it is possible that
f2fs_reserve_new_block() will return -ENOSPC during recovery,
then it may trigger panic.
Also, if fault injection rate is 1 and only FAULT_BLOCK fault
type is on, it may encounter deadloop in loop of block reservation.
Let's change as below to fix these issues:
- remove bug_on() to avoid panic.
- limit the loop count of block reservation to avoid potential
deadloop.
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H
Productos afectados
Linux · Linux¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
https://git.kernel.org/stable/c/21ec68234826b1b54ab980a8df6e33c74cfbee58https://git.kernel.org/stable/c/8844b2f8a3f0c428b74672f9726f9950b1a7764chttps://git.kernel.org/stable/c/d034810d02a5af8eb74debe29877dcaf5f00fdd1https://git.kernel.org/stable/c/f26091a981318b5b7451d61f99bc073a6af8db67https://git.kernel.org/stable/c/fe4de493572a4263554903bf9c3afc5c196e15f0