Description

In the Linux kernel, the following vulnerability has been resolved: block: fix overflow in blk_ioctl_discard() There is no check for overflow of 'start + len' in blk_ioctl_discard(). Hung task occurs if submit an discard ioctl with the following param: start = 0x80000000000ff000, len = 0x8000000000fff000; Add the overflow validation now.

INFO

Published Date :

2024-05-30T15:29:13.327Z

Last Modified :

2025-05-04T09:12:02.719Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-36917 vulnerability.

Vendors Products
Linux
  • Linux Kernel
Redhat
  • Enterprise Linux
  • Rhel Eus
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-36917.

URL Resource
https://git.kernel.org/stable/c/22d24a544b0d49bbcbd61c8c0eaf77d3c9297155 cve-icon cve-icon
https://git.kernel.org/stable/c/507d526a98c355e6f3fb2c47aacad44a69784bee cve-icon cve-icon
https://git.kernel.org/stable/c/8a26198186e97ee5fc4b42fde82629cff8c75cd6 cve-icon cve-icon
https://git.kernel.org/stable/c/e1d38cde2b7b0fbd1c48082e7a98c37d750af59b cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024053039-CVE-2024-36917-f9e3@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-36917 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-36917 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact