CVE-2024-46734

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.52

Description A race condition exists in the Linux kernel's btrfs file system when using the same file descriptor for direct IO writes and fsync operations. This can lead to either an attempt to perform fsync without holding the inode's lock, triggering assertion failures, or an invalid memory access from the fsync task due to the file private pointing to memory allocated on the stack by the direct IO task. The issue occurs when two threads are using the same file descriptor, one for direct IO writes and the other for fsync, and can result in a kernel bug or invalid opcode error.

Recommendations To resolve this issue, update the Linux kernel to version 6.6.52 or later. This update fixes the race condition between direct IO write and fsync when using the same file descriptor, preventing potential kernel bugs or invalid opcode errors.