Description

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Update log->page_{mask,bits} if log->page_size changed If an NTFS file system is mounted to another system with different PAGE_SIZE from the original system, log->page_size will change in log_replay(), but log->page_{mask,bits} don't change correspondingly. This will cause a panic because "u32 bytes = log->page_size - page_off" will get a negative value in the later read_log_page().

INFO

Published Date :

2024-08-17T09:09:06.570Z

Last Modified :

2025-11-03T22:03:59.953Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-42299 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-42299.

URL Resource
https://git.kernel.org/stable/c/0484adcb5fbcadd9ba0fd4485c42630f72e97da9 cve-icon cve-icon
https://git.kernel.org/stable/c/0a4ae2644e2a3b3b219aad9639fb2b0691d08420 cve-icon cve-icon
https://git.kernel.org/stable/c/2cac0df3324b5e287d8020bc0708f7d2dec88a6f cve-icon cve-icon
https://git.kernel.org/stable/c/2fef55d8f78383c8e6d6d4c014b9597375132696 cve-icon cve-icon
https://git.kernel.org/stable/c/b90ceffdc975502bc085ce8e79c6adeff05f9521 cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html cve-icon
https://lore.kernel.org/linux-cve-announce/2024081748-CVE-2024-42299-a588@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-42299 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-42299 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact