First published: Mon Jul 29 2024(Updated: )
In the Linux kernel, the following vulnerability has been resolved: ftruncate: pass a signed offset The old ftruncate() syscall, using the 32-bit off_t misses a sign extension when called in compat mode on 64-bit architectures. As a result, passing a negative length accidentally succeeds in truncating to file size between 2GiB and 4GiB. Changing the type of the compat syscall to the signed compat_off_t changes the behavior so it instead returns -EINVAL. The native entry point, the truncate() syscall and the corresponding loff_t based variants are all correct already and do not suffer from this mistake.
Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/kernel | <4.19.317 | 4.19.317 |
redhat/kernel | <5.4.279 | 5.4.279 |
redhat/kernel | <5.10.221 | 5.10.221 |
redhat/kernel | <5.15.162 | 5.15.162 |
redhat/kernel | <6.1.97 | 6.1.97 |
redhat/kernel | <6.6.37 | 6.6.37 |
redhat/kernel | <6.9.8 | 6.9.8 |
redhat/kernel | <6.10 | 6.10 |
debian/linux | 5.10.223-1 5.10.234-1 6.1.129-1 6.1.128-1 6.12.20-1 6.12.21-1 | |
debian/linux-6.1 | 6.1.129-1~deb11u1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2024-42084 is classified as moderate.
To fix CVE-2024-42084, upgrade to the latest kernel versions provided by your distribution, such as 4.19.317 or later.
Versions of the Linux kernel prior to 4.19.317, 5.4.279, 5.10.221, 5.15.162, 6.1.97, and others are affected by CVE-2024-42084.
Yes, CVE-2024-42084 specifically impacts 64-bit architectures when operating in compatibility mode.
CVE-2024-42084 can lead to unintended behaviors when a negative length is passed to the ftruncate() syscall, potentially causing data corruption.