PT-2024-21463 · Linux+5 · Linux Kernel+5

Syzbot

·

Published

2024-02-07

·

Updated

2025-03-13

·

CVE-2024-26685

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The issue is related to the end buffer async write() function, which handles the completion of block device writes. According to a syzbot report, this function may detect an abnormal condition of the buffer async write flag and cause a BUG ON failure when using nilfs2. The async write flag is used as a marker to resolve double list insertion of dirty blocks in nilfs lookup dirty data buffers() and nilfs lookup node buffers(). However, introducing async write for segment summary and super root blocks that share buffers with the backing device was irrelevant and redundant, leading to the possibility of a BUG ON check failure in end buffer async write() if independent writebacks of the backing device occurred in parallel.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-99

Related Identifiers

BDU:2025-03618
CVE-2024-26685
DLA-3840-1
DLA-3842-1
DSA-5658-1
DSA-5681-1
OESA-2024-1617
OESA-2024-1618
OESA-2024-1622
OESA-2024-1647
OESA-2024-1648
OESA-2024-1649
OPENSUSE-SU-2024_1490-1
OPENSUSE-SU-2024_1659-1
OPENSUSE-SU-2024_1663-1
SUSE-SU-2024:1490-1
SUSE-SU-2024:1659-1
SUSE-SU-2024:1663-1
SUSE-SU-2024:2135-1
SUSE-SU-2024:2203-1
SUSE-SU-2024:2973-1
SUSE-SU-2025:20008-1
USN-6766-1
USN-6766-2
USN-6766-3
USN-6767-1
USN-6767-2
USN-6795-1
USN-6828-1
USN-6895-1
USN-6895-2
USN-6895-3
USN-6895-4
USN-6900-1
USN-7332-1
USN-7332-2
USN-7332-3
USN-7342-1
USN-7344-1
USN-7344-2

Affected Products

Astra Linux
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu