CVE-2024-44947

MEDIUM

Linux kernel - Info Disclosure

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: fuse: Initialize beyond-EOF page contents before setting uptodate fuse_notify_store(), unlike fuse_do_readpage(), does not enable page zeroing (because it can be used to change partial page contents). So fuse_notify_store() must be more careful to fully initialize page contents (including parts of the page that are beyond end-of-file) before marking the page uptodate. The current code can leave beyond-EOF page contents uninitialized, which makes these uninitialized page contents visible to userspace via mmap(). This is an information leak, but only affects systems which do not enable init-on-alloc (via CONFIG_INIT_ON_ALLOC_DEFAULT_ON=y or the corresponding kernel command line parameter).

Exploits (1)

nomisec WORKING POC
by Abdurahmon3236 · poc
https://github.com/Abdurahmon3236/CVE-2024-44947

References (11)

Scores

CVSS v3 5.5
EPSS 0.0050
EPSS Percentile 65.8%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-665
Status published
Products (9)
linux/Kernel 2.6.36 - 4.19.321linux
linux/Kernel 4.20.0 - 5.4.283linux
linux/Kernel 5.11.0 - 5.15.166linux
linux/Kernel 5.16.0 - 6.1.107linux
linux/Kernel 5.5.0 - 5.10.225linux
linux/Kernel 6.2.0 - 6.6.48linux
linux/Kernel 6.7.0 - 6.10.7linux
linux/linux_kernel 6.11 rc1 (3 CPE variants)
linux/linux_kernel 2.6.36 - 4.19.321
Published Sep 02, 2024
Tracked Since Feb 18, 2026