CVE-2024-46701

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to infinite directory reads for offset dir in the Linux kernel. When tmpfs dir operations are switched from simple dir operations to simple offset dir operations, every rename operation fills a new dentry to the dest dir's maple tree with a free key starting with octx->newx offset, and then sets newx offset equals to free key + 1. This leads to infinite readdir when combined with rename operations happening at the same time, causing the test generic/736 in xfstests to fail. The fix involves recording the last index when opening a dir and not emitting entries with an index greater than or equal to last index.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.