PT-2024-21601 · Linux+4 · Linux Kernel+4

Published

2024-04-30

·

Updated

2025-02-03

·

CVE-2024-26972

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A vulnerability has been resolved in the Linux kernel, specifically in the ubifs symlink function, where a memleak of inode->i link occurs in the error path. This happens when the inode is marked as bad and then iput() is invoked. If inode->i link is initialized by fscrypt encrypt symlink() in an encryption scenario, it won't be freed by the callchain ubifs free inode -> fscrypt free inode in the error handling path. This is because make bad inode() has changed 'inode->i mode' to 'S IFREG'. The vulnerability can be reproduced by injecting an error in ubifs jnl update() when doing a symlink in an encryption scenario.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

CVE-2024-26972
OESA-2024-1679
OESA-2024-1680
OESA-2024-1682
OPENSUSE-SU-2024_1644-1
OPENSUSE-SU-2024_1659-1
OPENSUSE-SU-2024_1663-1
SUSE-SU-2024:1644-1
SUSE-SU-2024:1659-1
SUSE-SU-2024:1663-1
SUSE-SU-2024:2135-1
SUSE-SU-2024:2203-1
SUSE-SU-2024:2973-1
SUSE-SU-2025:20008-1
SUSE-SU-2025:20028-1
USN-6816-1
USN-6817-1
USN-6817-2
USN-6817-3
USN-6878-1

Affected Products

Astra Linux
Linuxmint
Linux Kernel
Suse
Ubuntu