PT-2024-7610 · Linux+9 · Linux Kernel+9
Baokun Li
·
Published
2024-01-18
·
Updated
2025-09-29
·
CVE-2024-26772
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel (affected versions not specified)
Description
The issue is related to the ext4 component of the Linux kernel, specifically with the function
ext4 mb find by goal() in fs/ext4/mballoc.c. It involves incorrect locking, which can lead to allocating blocks from a corrupted group. This can result in a denial of service. The logic for checking if the group's block bitmap is corrupt has been placed under the protection of the group lock to avoid this issue.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Improper Locking
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Almalinux
Astra Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu