CVE-2024-42077

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue arises from the code in ocfs2 dio end io write() estimating the number of necessary transaction credits using ocfs2 calc extend credits(), which does not account for arbitrarily large IO or an arbitrary number of extents. This can lead to the exhaustion of transaction credits when dealing with many single block extents, triggering a WARN ON in jbd2 journal dirty metadata() and causing OCFS2 to abort. The problem was encountered on a heavily fragmented OCFS2 filesystem. To resolve the issue, ensure the transaction always has enough credits for one extent insert before each call of ocfs2 mark extent written().

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.