PT-2024-29849 · Linux+4 · Linux Kernel+4

Huacai Chen

Published

2024-07-11

Updated

2025-10-07

CVE-2024-42299

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to the fs/ntfs3 component of the Linux kernel, where an NTFS file system mounted to another system with a different PAGE SIZE from the original system can cause a panic due to incorrect updating of log->page {mask,bits} when log->page size changes. This can lead to a negative value in the later read log page() function. The estimated number of potentially affected devices and details about real-world incidents are not provided.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

BDU:2025-01457

CVE-2024-42299

DLA-4008-1

MGASA-2024-0309

MGASA-2024-0310

OESA-2024-2106

OESA-2024-2107

OESA-2024-2108

OESA-2024-2296

USN-7100-1

USN-7100-2

USN-7123-1

USN-7144-1

USN-7154-1

USN-7154-2

USN-7155-1

USN-7156-1

USN-7194-1

USN-7196-1

Affected Products

Astra Linux

Linuxmint

Linux Kernel

Red Os

Ubuntu

PT-2024-29849 · Linux+4 · Linux Kernel+4

CVE-2024-42299

Weakness Enumeration

Related Identifiers

Affected Products

References · 1002