PT-2024-32197 · Linux+6 · Linux Kernel+6
Ryusuke Konishi
·
Published
2024-09-01
·
Updated
2026-02-21
·
CVE-2024-46781
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions prior to 6.6.52
Description
A use-after-free bug was found in the Linux kernel's nilfs2 file system. The bug occurs when data recovery is performed using partial logs created by dsync writes, but an error occurs before starting the log writer to create a recovered checkpoint. As a result, the inodes whose data had been recovered are left in the ns dirty files list of the nilfs object and are not freed. This issue can be fixed by cleaning up inodes that have read the recovery data if the recovery routine fails midway before the log writer starts.
Recommendations
Update to Linux kernel version 6.6.52 or later to fix the issue.
As a temporary workaround, consider disabling the nilfs2 file system until a patch is available.
Restrict access to the nilfs2 file system to minimize the risk of exploitation.
Exploit
Fix
Use After Free
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Astra Linux
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu