In the Linux kernel, the following vulnerability has been resolved:
bcachefs: Fix sb_field_downgrade validation
- bch2_sb_downgrade_validate() wasn't checking for a downgrade entry
extending past the end of the superblock section
- for_each_downgrade_entry() is used in to_text() and needs to work on
malformed input; it also was missing a check for a field extending
past the end of the section
Metrics
Affected Vendors & Products
References
History
Wed, 09 Oct 2024 14:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-20 | CWE-125 |
Wed, 11 Sep 2024 13:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Fri, 06 Sep 2024 13:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-20 |
MITRE
Status: PUBLISHED
Assigner: Linux
Published: 2024-07-29T15:48:02.175Z
Updated: 2024-12-19T09:11:38.928Z
Reserved: 2024-07-12T12:17:45.634Z
Link: CVE-2024-41086
Vulnrichment
Updated: 2024-09-11T12:42:19.955Z
NVD
Status : Awaiting Analysis
Published: 2024-07-29T16:15:04.043
Modified: 2024-11-21T09:32:12.953
Link: CVE-2024-41086
Redhat