CVE-2024-56759

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jan 6, 2025

Updated: Feb 11, 2025

CWE ID 416

Summary

CVE-2024-56759 is a Linux kernel vulnerability that affects the btrfs file system. When enabling preemption and tracing is on, a use-after-free vulnerability can occur during a COWing (Copy-on-Write) operation of a tree block. The issue arises because the last reference to the extent buffer is dropped before the tracepoint `trace_btrfs_cow_block()` is called, leading to the buffer being released before trace execution. The fix involves moving the tracepoint call to `btrfs_force_cow_block()` before the COWed extent buffer is freed. This change also results in the tracepoint being invoked in the tree defrag code, which was previously missing.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Know What Matters

For Customers

For Partners

CVE-2024-56759

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations