CVE-2024-0562

Name of the Vulnerable Software and Affected Versions Linux Kernel (affected versions not specified)

Description A use-after-free flaw was found in the Linux Kernel. When a disk is removed, bdi unregister is called to stop further write-back and waits for associated delayed work to complete. However, wb inode writeback end() may schedule bandwidth estimation work after this has completed, which can result in the timer attempting to access the recently freed bdi writeback. This issue is related to the wb inode writeback end() function in the mm/page-writeback.c module of the kernel's memory management subsystem. The exploitation of this issue may allow an attacker to impact the confidentiality, integrity, and availability of protected information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.