CVE-2024-27036

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to the cifs writeback functionality in the Linux kernel, which does not correctly handle cases where the cifs extend writeback() function hits a point where it is considering an additional folio, but this would overrun the wsize. This leads to the xas pause() function being called, which advances the loop counter and skips the page. The problem can be resolved by calling xas reset() any time the decision is made not to process the page being looked at, but rather send the request being built and start a new one. This issue can be tested by creating a 64K file, mounting a cifs share with a wsize of 64000, copying the file to it, and then comparing the original file and the copy.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.