PT-2024-10036 · Linux+7 · Linux Kernel+7

Ryusuke Konishi

+1

·

Published

2024-10-28

·

Updated

2025-10-03

·

CVE-2024-50230

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.61
Description The issue is related to the nilfs2 file system in the Linux kernel, specifically with the function nilfs clear folio dirty() in the fs/nilfs2/page.c module. It is associated with a memory write beyond the allocated buffer. Exploitation of this issue may allow an attacker to impact the confidentiality, integrity, and availability of protected information. The problem arises when the "checked" flag of a page/folio is not cleared after it is discarded by nilfs2's own routine, causing the sanity check of directory entries to be skipped when the directory page/folio is reloaded.
Recommendations For Linux kernel versions prior to 6.6.61, update to version 6.6.61 or later to resolve the issue. As a temporary workaround, consider restricting access to the nilfs2 file system until the update is applied.

Exploit

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_16880
ALT-PU-2024-15739
ALT-PU-2024-16040
ALT-PU-2024-16172
ALT-PU-2024-17099
ALT-PU-2024-17211
ALT-PU-2024-17891
ALT-PU-2025-12647
AZL-53004
AZL-53066
BDU:2025-00172
CVE-2024-50230
DLA-4008-1
DLA-4075-1
DSA-5818-1
MGASA-2024-0368
MGASA-2024-0369
OESA-2024-2491
OESA-2024-2492
OESA-2024-2493
OESA-2024-2494
OESA-2024-2520
OPENSUSE-SU-2024:14500-1
OPENSUSE-SU-2024_4314-1
OPENSUSE-SU-2024_4315-1
OPENSUSE-SU-2024_4316-1
OPENSUSE-SU-2024_4376-1
OPENSUSE-SU-2025:14705-1
SUSE-SU-2024:4314-1
SUSE-SU-2024:4315-1
SUSE-SU-2024:4316-1
SUSE-SU-2024:4318-1
SUSE-SU-2024:4364-1
SUSE-SU-2024:4376-1
SUSE-SU-2024:4387-1
SUSE-SU-2025:20163-1
SUSE-SU-2025:20164-1
SUSE-SU-2025:20246-1
SUSE-SU-2025:20247-1
USN-7276-1
USN-7277-1
USN-7288-1
USN-7288-2
USN-7289-1
USN-7289-2
USN-7289-3
USN-7289-4
USN-7291-1
USN-7293-1
USN-7294-1
USN-7294-2
USN-7294-3
USN-7294-4
USN-7295-1
USN-7305-1
USN-7308-1
USN-7310-1
USN-7331-1
USN-7388-1
USN-7389-1
USN-7390-1
USN-7393-1
USN-7401-1
USN-7413-1
USN-7449-1
USN-7449-2
USN-7450-1
USN-7451-1
USN-7452-1
USN-7453-1
USN-7458-1
USN-7468-1
USN-7523-1
USN-7524-1
USN-7539-1
USN-7540-1

Affected Products

Alt Linux
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu