CVE-2024-27032

MEDIUM

Linux kernel 4.19.307 through 4.20 - Loop Deadlock in Block Reservation

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid potential panic during recovery During recovery, if FAULT_BLOCK is on, it is possible that f2fs_reserve_new_block() will return -ENOSPC during recovery, then it may trigger panic. Also, if fault injection rate is 1 and only FAULT_BLOCK fault type is on, it may encounter deadloop in loop of block reservation. Let's change as below to fix these issues: - remove bug_on() to avoid panic. - limit the loop count of block reservation to avoid potential deadloop.

References (5)

Core 5

Core References

Patch

https://git.kernel.org/stable/c/fe4de493572a4263554903bf9c3afc5c196e15f0

Patch

https://git.kernel.org/stable/c/8844b2f8a3f0c428b74672f9726f9950b1a7764c

Patch

https://git.kernel.org/stable/c/d034810d02a5af8eb74debe29877dcaf5f00fdd1

Patch

https://git.kernel.org/stable/c/f26091a981318b5b7451d61f99bc073a6af8db67

Patch

https://git.kernel.org/stable/c/21ec68234826b1b54ab980a8df6e33c74cfbee58

Scores

CVSS v3 6.3

EPSS 0.0029

EPSS Percentile 20.5%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-835

Status published

Products (24)

Linux/Linux < 6.8

Linux/Linux 2a7b12d4705bc308cf18eae2b69ec8db34881cc3 - 8844b2f8a3f0c428b74672f9726f9950b1a7764c

Linux/Linux 4.19.307 - 4.20

Linux/Linux 5.10.210 - 5.11

Linux/Linux 5.15.149 - 5.16

Linux/Linux 5.4.269 - 5.5

Linux/Linux 6.1.77 - 6.1.83

Linux/Linux 6.1.83 - 6.1.*

Linux/Linux 6.6.16 - 6.6.23

Linux/Linux 6.6.23 - 6.6.*

... and 14 more

Published May 01, 2024

Tracked Since Feb 18, 2026