PT-2024-30756 · Linux+2 · Linux Kernel+2

Published

2024-08-26

Updated

2025-06-09

CVE-2024-43898

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.50

Description The issue concerns a sanity check for a NULL pointer after ext4 force shutdown in the ext4 module of the Linux kernel. A test case involves two threads writing short inline data to a file, which can trigger the vulnerability.

Recommendations For Linux kernel versions prior to 6.6.50, update to version 6.6.50 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2024-43898

INFSA-2025_6966

MGASA-2024-0309

MGASA-2024-0310

OESA-2024-2106

OESA-2024-2107

OESA-2024-2108

OESA-2024-2124

OPENSUSE-SU-2024_3551-1

OPENSUSE-SU-2024_3561-1

OPENSUSE-SU-2024_3564-1

OPENSUSE-SU-2024_3587-1

OPENSUSE-SU-2024_3592-1

RHSA-2025:6966

RHSA-2025_6966

SUSE-SU-2024:3551-1

SUSE-SU-2024:3559-1

SUSE-SU-2024:3561-1

SUSE-SU-2024:3564-1

SUSE-SU-2024:3566-1

SUSE-SU-2024:3569-1

SUSE-SU-2024:3587-1

SUSE-SU-2024:3591-1

SUSE-SU-2024:3592-1

SUSE-SU-2025:20073-1

SUSE-SU-2025:20077-1

Affected Products

Linux Kernel

Red Hat

Suse

PT-2024-30756 · Linux+2 · Linux Kernel+2

CVE-2024-43898

Related Identifiers

Affected Products

References · 674