CVE-2024-57928

HIGH

Linux Kernel 6.12-6.12.9 - Out-of-bounds Read in netfs Buffered Read Handling

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: netfs: Fix enomem handling in buffered reads If netfs_read_to_pagecache() gets an error from either ->prepare_read() or from netfs_prepare_read_iterator(), it needs to decrement ->nr_outstanding, cancel the subrequest and break out of the issuing loop. Currently, it only does this for two of the cases, but there are two more that aren't handled. Fix this by moving the handling to a common place and jumping to it from all four places. This is in preference to inserting a wrapper around netfs_prepare_read_iterator() as proposed by Dmitry Antipov[1].

References (2)

Core 2

Core References

Patch

https://git.kernel.org/stable/c/88ecdfea1b333de5c51442b45cd549eeadf01852

Patch

https://git.kernel.org/stable/c/105549d09a539a876b7c3330ab52d8aceedad358

Scores

CVSS v3 7.1

EPSS 0.0023

EPSS Percentile 13.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Details

CWE

CWE-125

Status published

Products (9)

linux/Kernel 6.12.0 - 6.12.10linux

Linux/Linux < 6.12

Linux/Linux 6.12

Linux/Linux 6.12.10 - 6.12.*

Linux/Linux 6.13

Linux/Linux ee4cdf7ba857a894ad1650d6ab77669cbbfa329e - 105549d09a539a876b7c3330ab52d8aceedad358

Linux/Linux ee4cdf7ba857a894ad1650d6ab77669cbbfa329e - 88ecdfea1b333de5c51442b45cd549eeadf01852

linux/linux_kernel 6.13 rc1 (6 CPE variants)

linux/linux_kernel 6.12 - 6.12.10

Published Jan 19, 2025

Tracked Since Feb 18, 2026