2348545 – (CVE-2024-58001) CVE-2024-58001 kernel: ocfs2: handle a symlink read error correctly

Bug 2348545 (CVE-2024-58001) - CVE-2024-58001 kernel: ocfs2: handle a symlink read error correctly

Summary: CVE-2024-58001 kernel: ocfs2: handle a symlink read error correctly

Keywords:
Status:	NEW
Alias:	CVE-2024-58001
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	low
Severity:	low
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2025-02-27 03:02 UTC by OSIDB Bzimport
Modified:	2025-02-27 16:57 UTC (History)
CC List:	4 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2025-02-27 03:02:42 UTC

In the Linux kernel, the following vulnerability has been resolved:

ocfs2: handle a symlink read error correctly

Patch series "Convert ocfs2 to use folios".

Mark did a conversion of ocfs2 to use folios and sent it to me as a
giant patch for review ;-)

So I've redone it as individual patches, and credited Mark for the patches
where his code is substantially the same.  It's not a bad way to do it;
his patch had some bugs and my patches had some bugs.  Hopefully all our
bugs were different from each other.  And hopefully Mark likes all the
changes I made to his code!


This patch (of 23):

If we can't read the buffer, be sure to unlock the page before returning.

Comment 1 Michal Findra 2025-02-27 16:50:37 UTC

Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2025022654-CVE-2024-58001-3f9c@gregkh/T

Note You need to log in before you can comment on or make changes to this bug.