CVE-2024-57923

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the fixed version

Description The issue is related to the btrfs compression functionality in the Linux kernel, specifically with the zlib compression path for S390 hardware acceleration. The problem arises when the input data length passed to zlib compress folios() can be arbitrary, potentially causing read-in bytes to exceed the input range. This triggers an assertion failure in btrfs compress folios() on the debug kernel. The fix involves correcting the strm.avail in calculation for the S390 hardware acceleration path.

Recommendations To resolve the issue, update the Linux kernel to a version that includes the fix for the strm.avail in calculation in the btrfs compression functionality. At the moment, there is no information about a newer version that contains a fix for this vulnerability.