摘要:
In the Linux kernel, the following vulnerability has been resolved:
bcachefs: Fix sb_field_downgrade validation
- bch2_sb_downgrade_validate() wasn't checking for a downgrade entry
extending past the end of the superblock section
- for_each_downgrade_entry() is used in to_text() and needs to work on
malformed input; it also was missing a check for a field extending
past the end of the section
安全等级: Low
公告ID: KylinSec-SA-2024-3429
发布日期: 2024年8月28日
关联CVE: CVE-2024-41086
In the Linux kernel, the following vulnerability has been resolved:
bcachefs: Fix sb_field_downgrade validation
- bch2_sb_downgrade_validate() wasn't checking for a downgrade entry
extending past the end of the superblock section
- for_each_downgrade_entry() is used in to_text() and needs to work on
malformed input; it also was missing a check for a field extending
past the end of the section
| cve名称 | 产品 | 组件 | 是否受影响 |
|---|---|---|---|
| CVE-2024-41086 | KY3.4-5A | kernel | Unaffected |
| CVE-2024-41086 | KY3.5.2 | kernel | Unaffected |
| CVE-2024-41086 | V6 | kernel | Unaffected |
