CVE-2024-49965

MEDIUM EPSS 8.7%
Published Oct 21, 20241y ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Oct 21, 2024 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: ocfs2: remove unreasonable unlock in ocfs2_read_blocks Patch series "Misc fixes for ocfs2_read_blocks", v5. This series contains 2 fixes for ocfs2_read_blocks(). The first patch fix the issue reported by syzbot, which detects bad unlock balance in ocfs2_read_blocks(). The second patch fixes an issue reported by Heming Zhao when reviewing above fix. This patch (of 2): There was a lock release before exiting, so remove the unreasonable unlock.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
8.7% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-667

Affected Products 10

VendorProductVersionRange
linuxlinux_kernel*≥4.4.204  –  <4.9
linuxlinux_kernel*≥4.9.204  –  <4.14
linuxlinux_kernel*≥4.14.157  –  <4.19
linuxlinux_kernel*≥4.19.87  –  <4.20
linuxlinux_kernel*≥4.20  –  <5.10.227
linuxlinux_kernel*≥5.11  –  <5.15.168
linuxlinux_kernel*≥5.16  –  <6.1.113
linuxlinux_kernel*≥6.2  –  <6.6.55
linuxlinux_kernel*≥6.7  –  <6.10.14
linuxlinux_kernel*≥6.11  –  <6.11.3

References 11

  • git.kernel.org https://git.kernel.org/stable/c/39a88623af3f1c686bf6db1e677ed865ffe6fccc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3f1ca6ba5452d53c598a45d21267a2c0c221eef3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5245f109b4afb6595360d4c180d483a6d2009a59
  • git.kernel.org https://git.kernel.org/stable/c/81aba693b129e82e11bb54f569504d943d018de9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/84543da867c967edffd5065fa910ebf56aaae49d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9753bcb17b36c9add9b32c61766ddf8d2d161911
  • git.kernel.org https://git.kernel.org/stable/c/c03a82b4a0c935774afa01fd6d128b444fd930a1
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/df4f20fc3673cee11abf2c571987a95733cb638d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f55a33fe0fb5274ef185fd61947cf142138958af
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/39a88623af3f1c686bf6db1e677ed865ffe6fccc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3f1ca6ba5452d53c598a45d21267a2c0c221eef3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/81aba693b129e82e11bb54f569504d943d018de9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/84543da867c967edffd5065fa910ebf56aaae49d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c03a82b4a0c935774afa01fd6d128b444fd930a1
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/df4f20fc3673cee11abf2c571987a95733cb638d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f55a33fe0fb5274ef185fd61947cf142138958af
    Patch