2323934 – (CVE-2024-50116) CVE-2024-50116 kernel: nilfs2: fix kernel bug due to missing clearing of buffer delay flag

Bug 2323934 (CVE-2024-50116) - CVE-2024-50116 kernel: nilfs2: fix kernel bug due to missing clearing of buffer delay flag

Summary: CVE-2024-50116 kernel: nilfs2: fix kernel bug due to missing clearing of buff...

Keywords:
Status:	NEW
Alias:	CVE-2024-50116
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2324023
Blocks:
TreeView+	depends on / blocked

Reported:	2024-11-05 18:03 UTC by OSIDB Bzimport
Modified:	2024-11-05 22:15 UTC (History)
CC List:	4 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2024-11-05 18:03:08 UTC

In the Linux kernel, the following vulnerability has been resolved:

nilfs2: fix kernel bug due to missing clearing of buffer delay flag

Syzbot reported that after nilfs2 reads a corrupted file system image
and degrades to read-only, the BUG_ON check for the buffer delay flag
in submit_bh_wbc() may fail, causing a kernel bug.

This is because the buffer delay flag is not cleared when clearing the
buffer state flags to discard a page/folio or a buffer head. So, fix
this.

This became necessary when the use of nilfs2's own page clear routine
was expanded.  This state inconsistency does not occur if the buffer
is written normally by log writing.

Comment 1 Robb Gatica 2024-11-05 21:07:02 UTC

Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2024110555-CVE-2024-50116-64fb@gregkh/T

Note You need to log in before you can comment on or make changes to this bug.