PT-2024-7911 · Linux+5 · Linux Kernel+5

Syzbot

·

Published

2024-03-14

·

Updated

2025-12-23

·

CVE-2024-26956

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The issue is related to a kernel bug in the nilfs2 file system, specifically with the detection of DAT corruption in btree and direct mappings. When the disk address translation routine nilfs dat translate() fails due to DAT metadata corruption, it can cause nilfs get block() to misidentify an existing block as non-existent, leading to inconsistent failure of data block lookup and insertion. Additionally, nilfs get block() returns a successful status in this inconsistent state, which can result in a BUG ON check for the BH Mapped flag in submit bh wbc() failing. This can be exploited to cause a denial of service.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

BDU:2024-09415
CVE-2024-26956
DLA-3840-1
DLA-3842-1
DSA-5681-1
OESA-2024-1677
OESA-2024-1678
OESA-2025-1080
OESA-2025-1081
OPENSUSE-SU-2024_1644-1
OPENSUSE-SU-2024_1659-1
OPENSUSE-SU-2024_1663-1
SUSE-SU-2024:1644-1
SUSE-SU-2024:1659-1
SUSE-SU-2024:1663-1
SUSE-SU-2024:2135-1
SUSE-SU-2025:20008-1
SUSE-SU-2025:20028-1
USN-6816-1
USN-6817-1
USN-6817-2
USN-6817-3
USN-6878-1
USN-6896-1
USN-6896-2
USN-6896-3
USN-6896-4
USN-6896-5
USN-6898-1
USN-6898-2
USN-6898-3
USN-6898-4
USN-6917-1
USN-6919-1
USN-6927-1
USN-7019-1

Affected Products

Astra Linux
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu