Description

In the Linux kernel, the following vulnerability has been resolved: xfs: fix finding a last resort AG in xfs_filestream_pick_ag When the main loop in xfs_filestream_pick_ag fails to find a suitable AG it tries to just pick the online AG. But the loop for that uses args->pag as loop iterator while the later code expects pag to be set. Fix this by reusing the max_pag case for this last resort, and also add a check for impossible case of no AG just to make sure that the uninitialized pag doesn't even escape in theory.

INFO

Published Date :

2024-11-09T10:14:27.875Z

Last Modified :

2025-05-04T09:48:59.033Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-50216 vulnerability.

Vendors Products
Linux
  • Linux Kernel
Redhat
  • Enterprise Linux
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-50216.

URL Resource
https://git.kernel.org/stable/c/77ddc732416b017180893cbb2356e9f0a414c575 cve-icon cve-icon
https://git.kernel.org/stable/c/a023408925acd64db5c8980373fcb3e28ec6fd29 cve-icon cve-icon
https://git.kernel.org/stable/c/dc60992ce76fbc2f71c2674f435ff6bde2108028 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024110924-CVE-2024-50216-a031@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-50216 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-50216 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact