CVE-2024-47670

Oct. 17, 2024, 2:15 p.m.

Tags

416baaa9-dc9f-4396-8d5f-8c081fb06d67

2024-10-09

CVE-2024-47670

Product(s) Impacted

Linux Kernel

Description

In the Linux kernel, the following vulnerability has been resolved: ocfs2: add bounds checking to ocfs2_xattr_find_entry() Add a paranoia check to make sure it doesn't stray beyond valid memory region containing ocfs2 xattr entries when scanning for a match. It will prevent out-of-bound access in case of crafted images.

Weaknesses

Date

Published: Oct. 9, 2024, 3:15 p.m.

Last Modified: Oct. 17, 2024, 2:15 p.m.

Status : Undergoing Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

References

https://git.kernel.org/stable/c/1f6e167d6753fe3ea493cdc7f7de8d03147a4d39

416baaa9-dc9f-4396-8d5f-8c081fb06d67

https://git.kernel.org/stable/c/34759b7e4493d7337cbc414c132cef378c492a2c

416baaa9-dc9f-4396-8d5f-8c081fb06d67

https://git.kernel.org/stable/c/5bbe51eaf01a5dd6fb3f0dea81791e5dbc6dc6dd

416baaa9-dc9f-4396-8d5f-8c081fb06d67

https://git.kernel.org/stable/c/8e7bef408261746c160853fc27df3139659f5f77

416baaa9-dc9f-4396-8d5f-8c081fb06d67

https://git.kernel.org/stable/c/9b32539590a8e6400ac2f6e7cf9cbb8e08711a2f

416baaa9-dc9f-4396-8d5f-8c081fb06d67

https://git.kernel.org/stable/c/9e3041fecdc8f78a5900c3aa51d3d756e73264d6

416baaa9-dc9f-4396-8d5f-8c081fb06d67