CVE-2024-47726: f2fs: fix to wait dio completion
First published: Mon Oct 21 2024(Updated: )
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to wait dio completion It should wait all existing dio write IOs before block removal, otherwise, previous direct write IO may overwrite data in the block which may be reused by other inode.
Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linux Kernel | <6.11.2 | |
| debian/linux | <=5.10.223-1<=5.10.226-1<=6.1.123-1<=6.1.128-1 | 6.12.12-1 6.12.15-1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-47726
- https://nvd.nist.gov/vuln/detail/CVE-2024-47726
- https://launchpad.net/bugs/cve/CVE-2024-47726
- https://security-tracker.debian.org/tracker/CVE-2024-47726
- https://ubuntu.com/security/CVE-2024-47726
- https://git.kernel.org/linus/96cfeb0389530ae32ade8a48ae3ae1ac3b6c009d
- https://git.kernel.org/stable/c/96cfeb0389530ae32ade8a48ae3ae1ac3b6c009d
- https://git.kernel.org/stable/c/c2a7fc514637f640ff55c3f3e3ed879970814a3f
- https://git.kernel.org/stable/c/e3db757ff9b7101ae68650ac5f6dd5743b68164e
- https://git.kernel.org/stable/c/f81302decd64245bb1bd154ecae0f65a9ee21f04
- agent/title
- agent/type
- agent/first-publish-date
- agent/author
- agent/remedy
- agent/severity
- agent/last-modified-date
- collector/usn-cve
- source/Ubuntu
- collector/launchpad-cve
- source/Launchpad
- collector/security-tracker-debian
- source/Debian
- agent/software-canonical-lookup
- agent/source
- agent/references
- agent/description
- collector/nvd-cve
- source/NVD
- agent/tags
- agent/softwarecombine
- agent/event
- collector/mitre-cve
- source/MITRE
- collector/nvd-api
- package-manager/debian
- vendor/linux
- canonical/linux kernel