CVE-2024-43914

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.50

Description The issue is related to the md/raid5 module in the Linux kernel, where a BUG ON() can be triggered when attempting to revert a reshape operation while reassembling. The root cause is that the --revert-reshape option updates the raid disks from 5 to 4, while the reshape position is still set, leading to a failure in the checking of 'writepos' calculated by the old reshape position. To fix this panic, the BUG ON() is converted to WARN ON(), and the reshape is stopped if checkings fail. It is also noted that mdadm must fix --revert-shape, and md/raid should enhance metadata validation.

Recommendations For Linux kernel versions prior to 6.6.50, update to version 6.6.50 or later to resolve the issue. As a temporary workaround, consider disabling the reshape functionality until a patch is available. Restrict access to the md/raid5 module to minimize the risk of exploitation. Avoid using the --revert-reshape option in mdadm until the issue is resolved.