Resolved vulnerability in fs/ntfs3: Check for excessive chunk writing
CVE-2024-50247

7.1HIGH

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 9 November 2024

What is CVE-2024-50247?

A vulnerability exists in the Linux kernel's NTFS file system handling, where improperly formatted chunks could be decompressed into more bytes than expected, leading to an index out of bounds error in s_max_off. This can potentially cause access violations that may impact system stability and integrity. Proper validations are crucial to prevent such issues from arising, ensuring effective data management within the NTFS file system.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 4534a70b7056fd4b9a1c6db5a4ce3c98546b291e

Linux 4534a70b7056fd4b9a1c6db5a4ce3c98546b291e < 1b6bc5f7212181093b6c5310eea216fc09c721a9

Linux 4534a70b7056fd4b9a1c6db5a4ce3c98546b291e < 5f21e3e60982cd7353998b4f59f052134fd47d64

References

https://git.kernel.org/stable/c/e5ae7859008688626b4d2fa61...

https://git.kernel.org/stable/c/1b6bc5f7212181093b6c5310e...

https://git.kernel.org/stable/c/5f21e3e60982cd7353998b4f5...

CVSS V3.1

Score:

7.1

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 9, 2024
Vulnerability Reserved
Oct 21, 2024

JSON

Linux

What is CVE-2024-50247?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.