- Vulnerability/
- CVE-2024-27035
CVE-2024-27035: f2fs: compress: fix to guarantee persisting compressed blocks by CP
First published: Wed May 01 2024(Updated: )
In the Linux kernel, the following vulnerability has been resolved: f2fs: compress: fix to guarantee persisting compressed blocks by CP If data block in compressed cluster is not persisted with metadata during checkpoint, after SPOR, the data may be corrupted, let's guarantee to write compressed page by checkpoint.
Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67 416baaa9-dc9f-4396-8d5f-8c081fb06d67
| Affected Software | Affected Version | How to fix |
|---|---|---|
| debian/linux | <=5.10.223-1<=5.10.226-1 | 6.1.123-1 6.1.119-1 6.12.10-1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://git.kernel.org/stable/c/57e8b17d0522c8f4daf0c4d9969b4d7358033532
- https://git.kernel.org/stable/c/82704e598d7b33c7e45526e34d3c585426319bed
- https://git.kernel.org/stable/c/8a430dd49e9cb021372b0ad91e60aeef9c6ced00
- https://git.kernel.org/stable/c/c3311694b9bcced233548574d414c91d39214684
- https://git.kernel.org/stable/c/e54cce8137258a550b49cae45d09e024821fb28d
- https://launchpad.net/bugs/cve/CVE-2024-27035
- https://git.kernel.org/linus/8a430dd49e9cb021372b0ad91e60aeef9c6ced00
- https://security-tracker.debian.org/tracker/CVE-2024-27035
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27035
- https://nvd.nist.gov/vuln/detail/CVE-2024-27035
- https://ubuntu.com/security/CVE-2024-27035
Frequently Asked Questions
What is the severity of CVE-2024-27035?
CVE-2024-27035 is classified as a moderate severity vulnerability in the Linux kernel that could lead to data corruption.
How do I fix CVE-2024-27035?
To fix CVE-2024-27035, upgrade to the recommended versions of the Linux package: 6.1.123-1, 6.1.119-1, or 6.12.10-1.
Which Linux versions are affected by CVE-2024-27035?
The affected Linux versions for CVE-2024-27035 include those up to and including 5.10.226-1.
What specific component of the Linux kernel does CVE-2024-27035 affect?
CVE-2024-27035 specifically affects the F2FS file system component related to block compression.
Is data loss possible due to CVE-2024-27035?
Yes, CVE-2024-27035 can lead to data corruption if data blocks are not persisted correctly during a checkpoint.
- agent/severity
- agent/title
- agent/type
- collector/nvd-api
- source/NVD
- agent/remedy
- agent/first-publish-date
- collector/launchpad-cve
- source/Launchpad
- agent/author
- agent/references
- collector/usn-cve
- source/Ubuntu
- agent/event
- agent/description
- collector/nvd-cve
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/trending
- agent/tags
- collector/security-tracker-debian
- source/Debian
- agent/software-canonical-lookup
- agent/softwarecombine
- agent/source
- package-manager/debian