PT-2025-3305 · Linux+6 · Linux Kernel+6

Published

2024-12-23

·

Updated

2026-03-13

·

CVE-2024-56758

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A vulnerability in the Linux kernel has been resolved, related to the Btrfs file system. The issue occurs when calling btrfs read folio() to bring a folio up-to-date, which unlocks the folio, allowing a different thread to modify the mapping before calling folio lock(). This results in an invalid page, potentially leading to a crash. The crash can happen when relocating concurrently with aborting a transaction. The vulnerability is due to the failure to check if the mapping is set to NULL before calling set extent mapping(), which assumes that the mapping is not NULL.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

ALT-PU-2025-1256
ALT-PU-2025-12647
ALT-PU-2025-1925
ALT-PU-2025-3483
AZL-55032
BDU:2025-15218
CVE-2024-56758
DLA-4328-1
DSA-5973-1
ECHO-5899-E4DB-A4BD
OESA-2025-1080
OESA-2025-1081
OESA-2025-1093
OESA-2025-1097
OPENSUSE-SU-2025_1177-1
OPENSUSE-SU-2025_1178-1
OPENSUSE-SU-2025_1180-1
SUSE-SU-2025:01919-1
SUSE-SU-2025:01951-1
SUSE-SU-2025:01967-1
SUSE-SU-2025:1177-1
SUSE-SU-2025:1178-1
SUSE-SU-2025:1180-1
SUSE-SU-2025:20190-1
SUSE-SU-2025:20192-1
SUSE-SU-2025:20260-1
SUSE-SU-2025:20270-1
SUSE-SU-2025_01951-1
SUSE-SU-2025_01967-1
SUSE-SU-2025_1177-1
SUSE-SU-2025_1178-1
SUSE-SU-2025_1180-1
USN-7379-1
USN-7379-2
USN-7380-1
USN-7381-1
USN-7382-1
USN-7513-1
USN-7513-2
USN-7513-3
USN-7513-4
USN-7513-5
USN-7514-1
USN-7515-1
USN-7515-2
USN-7522-1
USN-7523-1
USN-7524-1

Affected Products

Alt Linux
Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu