CVE-2024-53112
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Published Dec 2, 2024
Updated: Dec 14, 2024
Summary
CVE-2024-53112 is a vulnerability affecting the Linux kernel's OCFS2 file system. In the event that 'ioctl(OCFS2_IOC_GROUP_ADD)' fails for a specific inode, the corresponding buffer head remains cached. Subsequent calls to the same 'ioctl()' function for the same inode result in a kernel BUG in 'ocfs2_set_new_buffer_uptodate()'. To mitigate this issue, the code should be updated to uncache the buffer head using 'ocfs2_remove_from_cache()' upon encountering an error in 'ocfs2_group_add()'.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share