CVE-2024-50116

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.6.61

Description: A kernel bug in the Linux kernel has been resolved, specifically in the nilfs2 file system. The issue occurs when nilfs2 reads a corrupted file system image and degrades to read-only, causing the BUG ON check for the buffer delay flag in submit bh wbc() to fail. This happens because the buffer delay flag is not cleared when clearing the buffer state flags to discard a page/folio or a buffer head. The state inconsistency does not occur if the buffer is written normally by log writing.

Recommendations: For Linux kernel versions prior to 6.6.61, update to version 6.6.61 or later to resolve the issue. As a temporary workaround, consider disabling the use of nilfs2's own page clear routine until a patch is available. Restrict access to corrupted file system images to minimize the risk of exploitation. Avoid using the submit bh wbc() function with corrupted file system images until the issue is resolved.