Description

In the Linux kernel, the following vulnerability has been resolved: erofs: handle NONHEAD !delta[1] lclusters gracefully syzbot reported a WARNING in iomap_iter_done: iomap_fiemap+0x73b/0x9b0 fs/iomap/fiemap.c:80 ioctl_fiemap fs/ioctl.c:220 [inline] Generally, NONHEAD lclusters won't have delta[1]==0, except for crafted images and filesystems created by pre-1.0 mkfs versions. Previously, it would immediately bail out if delta[1]==0, which led to inadequate decompressed lengths (thus FIEMAP is impacted). Treat it as delta[1]=1 to work around these legacy mkfs versions. `lclusterbits > 14` is illegal for compact indexes, error out too.

INFO

Published Date :

2024-12-27T13:50:20.909Z

Last Modified :

2025-11-03T20:48:01.055Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-53234 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-53234.

URL Resource
https://git.kernel.org/stable/c/0bc8061ffc733a0a246b8689b2d32a3e9204f43c cve-icon cve-icon
https://git.kernel.org/stable/c/480c6c7b55aeacac800bc2a0d321ff53273045e5 cve-icon cve-icon
https://git.kernel.org/stable/c/75a0a6dde803e7a3af700da8da9a361b49f69eba cve-icon cve-icon
https://git.kernel.org/stable/c/daaf68fef4b2ff97928227630021d37b27a96655 cve-icon cve-icon
https://git.kernel.org/stable/c/f466641debcbea8bdf78d1b63a6270aadf9301bf cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2025/03/msg00001.html cve-icon
https://lore.kernel.org/linux-cve-announce/2024122738-CVE-2024-53234-4ee6@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-53234 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-53234 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact