2338862 – (CVE-2024-57928) CVE-2024-57928 kernel: netfs: Fix enomem handling in buffered reads

Bug 2338862 (CVE-2024-57928) - CVE-2024-57928 kernel: netfs: Fix enomem handling in buffered reads

Summary: CVE-2024-57928 kernel: netfs: Fix enomem handling in buffered reads

Keywords:
Status:	NEW
Alias:	CVE-2024-57928
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	low
Severity:	low
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2025-01-19 12:03 UTC by OSIDB Bzimport
Modified:	2025-01-20 04:26 UTC (History)
CC List:	4 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2025-01-19 12:03:00 UTC

In the Linux kernel, the following vulnerability has been resolved:

netfs: Fix enomem handling in buffered reads

If netfs_read_to_pagecache() gets an error from either ->prepare_read() or
from netfs_prepare_read_iterator(), it needs to decrement ->nr_outstanding,
cancel the subrequest and break out of the issuing loop.  Currently, it
only does this for two of the cases, but there are two more that aren't
handled.

Fix this by moving the handling to a common place and jumping to it from
all four places.  This is in preference to inserting a wrapper around
netfs_prepare_read_iterator() as proposed by Dmitry Antipov[1].

Comment 1 Avinash Hanwate 2025-01-20 04:22:01 UTC

Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2025011945-CVE-2024-57928-7291@gregkh/T

Note You need to log in before you can comment on or make changes to this bug.