CVE-2024-56619

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.74

Description A potential out-of-bounds memory access issue in the nilfs find entry() function has been resolved. This issue occurs when searching for records in a directory with a corrupted inode size, potentially leading to memory access outside the folio/page range or detection of a use-after-free bug if KASAN is enabled. The problem is caused by the nilfs last byte() function losing the upper 32 bits of 64-bit size information due to an inappropriate type of local variable. This results in a large byte offset value and memory access that exceeds the folio/page size.

Recommendations To resolve this issue, update to Linux kernel version 6.6.74 or later. As a temporary workaround, consider restricting access to the nilfs find entry() function until a patch is available. Additionally, ensure that the nilfs last byte() function is properly truncated to not exceed PAGE SIZE to prevent bit loss.