CVE-2024-47723

HIGH EPSS 20.3%
Published Oct 21, 20241y ago · Modified Jun 17, 20262w ago
7.1 CVSS 3.1
High
Find Similar
Published Oct 21, 2024 1y ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: jfs: fix out-of-bounds in dbNextAG() and diAlloc() In dbNextAG() , there is no check for the case where bmp->db_numag is greater or same than MAXAG due to a polluted image, which causes an out-of-bounds. Therefore, a bounds check should be added in dbMount(). And in dbNextAG(), a check for the case where agpref is greater than bmp->db_numag should be added, so an out-of-bounds exception should be prevented. Additionally, a check for the case where agno is greater or same than MAXAG should be added in diAlloc() to prevent out-of-bounds.

CVSS Details

Base Score
7.1
Exploitability
1.8
Impact
5.2
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
20.3% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-125 Out-of-bounds Read Memory Safety

Affected Products 6

VendorProductVersionRange
linuxlinux_kernel*≥2.6.12  –  <5.10.227
linuxlinux_kernel*≥5.11  –  <5.15.168
linuxlinux_kernel*≥5.16  –  <6.1.113
linuxlinux_kernel*≥6.2  –  <6.6.54
linuxlinux_kernel*≥6.7  –  <6.10.13
linuxlinux_kernel*≥6.11  –  <6.11.2

References 13

  • cert-portal.siemens.com https://cert-portal.siemens.com/productcert/html/ssa-265688.html
  • cert-portal.siemens.com https://cert-portal.siemens.com/productcert/html/ssa-355557.html
  • git.kernel.org https://git.kernel.org/stable/c/0338e66cba272351ca9d7d03f3628e390e70963b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/128d5cfdcf844cb690c9295a3a1c1114c21fc15a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5ad6284c8d433f8a213111c5c44ead4d9705b622
  • git.kernel.org https://git.kernel.org/stable/c/6ce8b6ab44a8b5918c0ee373d4ad19d19017931b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/96855f40e152989c9e7c20c4691ace5581098acc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c1ba4b8ca799ff1d99d01f37d7ccb7d5ba5533d2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d1017d2a0f3f16dc1db5120e7ddbe7c6680425b0
  • git.kernel.org https://git.kernel.org/stable/c/e63866a475562810500ea7f784099bfe341e761a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ead82533278502428883085a787d5a00f15e5eb9
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/0338e66cba272351ca9d7d03f3628e390e70963b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/128d5cfdcf844cb690c9295a3a1c1114c21fc15a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6ce8b6ab44a8b5918c0ee373d4ad19d19017931b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/96855f40e152989c9e7c20c4691ace5581098acc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c1ba4b8ca799ff1d99d01f37d7ccb7d5ba5533d2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e63866a475562810500ea7f784099bfe341e761a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ead82533278502428883085a787d5a00f15e5eb9
    Patch