Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2024-47670
PUBLISHED
More InfoOfficial Page
Assigner-Linux
Assigner Org ID-416baaa9-dc9f-4396-8d5f-8c081fb06d67
View Known Exploited Vulnerability (KEV) details
Published At-09 Oct, 2024 | 14:49
Updated At-04 May, 2025 | 09:36
Rejected At-
▼CVE Numbering Authority (CNA)
ocfs2: add bounds checking to ocfs2_xattr_find_entry()

In the Linux kernel, the following vulnerability has been resolved: ocfs2: add bounds checking to ocfs2_xattr_find_entry() Add a paranoia check to make sure it doesn't stray beyond valid memory region containing ocfs2 xattr entries when scanning for a match. It will prevent out-of-bound access in case of crafted images.

Affected Products
Vendor
Linux Kernel Organization, IncLinux
Product
Linux
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Program Files
  • fs/ocfs2/xattr.c
Default Status
unaffected
Versions
Affected
  • From 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before b49a786beb11ff740cb9e0c20b999c2a0e1729c2 (git)
  • From 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 60c0d36189bad58b1a8e69af8781d90009559ea1 (git)
  • From 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 34759b7e4493d7337cbc414c132cef378c492a2c (git)
  • From 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 5bbe51eaf01a5dd6fb3f0dea81791e5dbc6dc6dd (git)
  • From 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 9b32539590a8e6400ac2f6e7cf9cbb8e08711a2f (git)
  • From 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 1f6e167d6753fe3ea493cdc7f7de8d03147a4d39 (git)
  • From 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 8e7bef408261746c160853fc27df3139659f5f77 (git)
  • From 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 9e3041fecdc8f78a5900c3aa51d3d756e73264d6 (git)
Vendor
Linux Kernel Organization, IncLinux
Product
Linux
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Program Files
  • fs/ocfs2/xattr.c
Default Status
affected
Versions
Unaffected
  • From 4.19.323 through 4.19.* (semver)
  • From 5.4.285 through 5.4.* (semver)
  • From 5.10.227 through 5.10.* (semver)
  • From 5.15.168 through 5.15.* (semver)
  • From 6.1.112 through 6.1.* (semver)
  • From 6.6.53 through 6.6.* (semver)
  • From 6.10.12 through 6.10.* (semver)
  • From 6.11 through * (original_commit_for_fix)
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://git.kernel.org/stable/c/b49a786beb11ff740cb9e0c20b999c2a0e1729c2
N/A
https://git.kernel.org/stable/c/60c0d36189bad58b1a8e69af8781d90009559ea1
N/A
https://git.kernel.org/stable/c/34759b7e4493d7337cbc414c132cef378c492a2c
N/A
https://git.kernel.org/stable/c/5bbe51eaf01a5dd6fb3f0dea81791e5dbc6dc6dd
N/A
https://git.kernel.org/stable/c/9b32539590a8e6400ac2f6e7cf9cbb8e08711a2f
N/A
https://git.kernel.org/stable/c/1f6e167d6753fe3ea493cdc7f7de8d03147a4d39
N/A
https://git.kernel.org/stable/c/8e7bef408261746c160853fc27df3139659f5f77
N/A
https://git.kernel.org/stable/c/9e3041fecdc8f78a5900c3aa51d3d756e73264d6
N/A
▼Authorized Data Publishers (ADP)
CISA ADP Vulnrichment
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
Details not found