PT-2024-10451 · Linux+4 · Linux Kernel+4

Shinichiro Kawasaki

·

Published

2024-07-30

·

Updated

2026-03-24

·

CVE-2024-42103

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.43
Description The vulnerability is related to a potential parallel list adding issue in the btrfs reclaim bgs work function, which can cause list corruption and trigger a kernel bug. The issue can be reproduced when relocation cannot find more chunk space and ends with ENOSPC. The vulnerability is fixed by taking the fs info->unused bgs lock.
Recommendations To resolve the issue, update the Linux kernel to version 6.6.43 or later. If updating is not possible, consider taking the fs info->unused bgs lock to prevent parallel list adding and list corruption. However, this is a temporary workaround and updating the kernel is the recommended solution.
At the moment, there is no information about other versions that contain a fix for this vulnerability.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-388

Related Identifiers

BDU:2025-00991
CVE-2024-42103
DLA-4008-1
MGASA-2024-0277
MGASA-2024-0278
OESA-2024-2076
SUSE-SU-2026:0447-1
SUSE-SU-2026:0471-1
SUSE-SU-2026:0472-1
SUSE-SU-2026:0587-1
SUSE-SU-2026:20477-1
SUSE-SU-2026:20498-1
SUSE-SU-2026:20845-1
SUSE-SU-2026:20876-1
USN-7089-1
USN-7089-2
USN-7089-3
USN-7089-4
USN-7089-5
USN-7089-6
USN-7089-7
USN-7090-1
USN-7095-1
USN-7156-1

Affected Products

Astra Linux
Linuxmint
Linux Kernel
Red Os
Ubuntu