CVE-2024-49994

Опубликовано: 21 окт. 2024

Источник: nvd

CVSS3: 5.5

EPSS Низкий

Описание

In the Linux kernel, the following vulnerability has been resolved:

block: fix integer overflow in BLKSECDISCARD

I independently rediscovered

commit 22d24a544b0d49bbcbd61c8c0eaf77d3c9297155 block: fix overflow in blk_ioctl_discard()

but for secure erase.

Same problem:

uint64_t r[2] = {512, 18446744073709551104ULL}; ioctl(fd, BLKSECDISCARD, r);

will enter near infinite loop inside blkdev_issue_secure_erase():

a.out: attempt to access beyond end of device loop0: rw=5, sector=3399043073, nr_sectors = 1024 limit=2048 bio_check_eod: 3286214 callbacks suppressed

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия до 6.10.14 (исключая)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия от 6.11 (включая) до 6.11.3 (исключая)

EPSS

Процентиль: 17%

0.00055

Низкий

5.5 Medium

CVSS3

Дефекты

CWE-190

Связанные уязвимости

CVE-2024-49994

CVSS3: 5.5

ubuntu

10 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: block: fix integer overflow in BLKSECDISCARD I independently rediscovered commit 22d24a544b0d49bbcbd61c8c0eaf77d3c9297155 block: fix overflow in blk_ioctl_discard() but for secure erase. Same problem: uint64_t r[2] = {512, 18446744073709551104ULL}; ioctl(fd, BLKSECDISCARD, r); will enter near infinite loop inside blkdev_issue_secure_erase(): a.out: attempt to access beyond end of device loop0: rw=5, sector=3399043073, nr_sectors = 1024 limit=2048 bio_check_eod: 3286214 callbacks suppressed

CVE-2024-49994

CVSS3: 4.4

redhat

10 месяцев назад

CVE-2024-49994

CVSS3: 5.5

debian

10 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: b ...

GHSA-qqcr-57gp-2jmq

CVSS3: 5.5

github

10 месяцев назад

SUSE-SU-2025:01600-1

suse-cvrf

3 месяца назад

Security update for the Linux Kernel

EPSS

Процентиль: 17%

0.00055

Низкий

5.5 Medium

CVSS3

Дефекты

CWE-190