Linux Kernel Vulnerability in EROFS for File-Backed Mounts
CVE-2024-56750

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 29 December 2024

Summary

A vulnerability exists in the Linux kernel's EROFS filesystem that impacts file-backed mounts when the filesystem's block size is set smaller than the PAGE_SIZE. The issue arises from the improper adjustment of the sb->s_blocksize and sb->s_blocksize_bits parameters. This oversight leads to system instability and potential crashes, as the previous method of using sb_set_blocksize() was unsuitable for scenarios where block devices were not employed. It is critical for users operating with affected versions of the Linux kernel to ensure timely updates to mitigate this risk.

Affected Version(s)

Linux fb176750266a3d7f42ebdcf28e8ba40350b27847 < 679d8537e5748241c71ac97a6b6dc919eae31716

Linux fb176750266a3d7f42ebdcf28e8ba40350b27847

Linux 6.12

References

https://git.kernel.org/stable/c/679d8537e5748241c71ac97a6...

https://git.kernel.org/stable/c/bae0854160939a64a092516ff...

Timeline

Vulnerability published
Dec 29, 2024
Vulnerability Reserved
Dec 29, 2024

Collectors

NVD DatabaseMitre Database