Description

In the Linux kernel, the following vulnerability has been resolved: filemap: Fix bounds checking in filemap_read() If the caller supplies an iocb->ki_pos value that is close to the filesystem upper limit, and an iterator with a count that causes us to overflow that limit, then filemap_read() enters an infinite loop. This behaviour was discovered when testing xfstests generic/525 with the "localio" optimisation for loopback NFS mounts.

INFO

Published Date :

2024-11-19T01:30:11.194Z

Last Modified :

2025-11-03T22:27:52.514Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-50272 vulnerability.

Vendors Products
Linux
  • Linux Kernel
Redhat
  • Enterprise Linux
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-50272.

URL Resource
https://git.kernel.org/stable/c/26530b757c81f1389fb33ae0357500150933161b cve-icon cve-icon
https://git.kernel.org/stable/c/6450e73f4c86d481ac2e22e1bc848d346e140826 cve-icon cve-icon
https://git.kernel.org/stable/c/6cc52df69e8464811f9f6fc12f7aaa78451eb0b8 cve-icon cve-icon
https://git.kernel.org/stable/c/a2746ab3bbc9c6408da5cd072653ec8c24749235 cve-icon cve-icon
https://git.kernel.org/stable/c/ace149e0830c380ddfce7e466fe860ca502fe4ee cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html cve-icon
https://lore.kernel.org/linux-cve-announce/2024111930-CVE-2024-50272-5691@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-50272 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-50272 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact