In the Linux kernel, the following vulnerability has been resolved: bcachefs: Fix sb_field_downgrade validation - bch2_sb_downgrade_validate() wasn't checking for a downgrade entry extending past the end of the superblock section - for_each_downgrade_entry() is used in to_text() and needs to work on malformed input; it also was missing a check for a field extending past the end of the section
History

Wed, 09 Oct 2024 14:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-20 CWE-125

Wed, 11 Sep 2024 13:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Fri, 06 Sep 2024 13:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-20

cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2024-07-29T15:48:02.175Z

Updated: 2024-12-19T09:11:38.928Z

Reserved: 2024-07-12T12:17:45.634Z

Link: CVE-2024-41086

cve-icon Vulnrichment

Updated: 2024-09-11T12:42:19.955Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-07-29T16:15:04.043

Modified: 2024-11-21T09:32:12.953

Link: CVE-2024-41086

cve-icon Redhat

Severity : Low

Publid Date: 2024-07-29T00:00:00Z

Links: CVE-2024-41086 - Bugzilla