CVE-2024-36917

Published: May 30, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: block: fix overflow in blk_ioctl_discard() There is no check for overflow of 'start + len' in blk_ioctl_discard(). Hung task occurs if submit an discard ioctl with the following param: start = 0x80000000000ff000, len = 0x8000000000fff000; Add the overflow validation now.

Vendor	Product	Versions
Linux	Linux	affected `d30a2605be9d5132d95944916e8f578fcfe4f976 - < 8a26198186e97ee5fc4b42fde82629cff8c75cd6` affected `d30a2605be9d5132d95944916e8f578fcfe4f976 - < e1d38cde2b7b0fbd1c48082e7a98c37d750af59b` affected `d30a2605be9d5132d95944916e8f578fcfe4f976 - < 507d526a98c355e6f3fb2c47aacad44a69784bee` affected `d30a2605be9d5132d95944916e8f578fcfe4f976 - < 22d24a544b0d49bbcbd61c8c0eaf77d3c9297155`
Linux	Linux	affected `2.6.28` unaffected `0 - < 2.6.28` unaffected `6.1.91 - <= 6.1.` unaffected `6.6.31 - <= 6.6.` unaffected `6.8.10 - <= 6.8.*` +1 more versions

References

https://git.kernel.org/stable/c/8a26198186e97ee5fc4b42fde82629cff8c75cd6

https://git.kernel.org/stable/c/e1d38cde2b7b0fbd1c48082e7a98c37d750af59b

https://git.kernel.org/stable/c/507d526a98c355e6f3fb2c47aacad44a69784bee

https://git.kernel.org/stable/c/22d24a544b0d49bbcbd61c8c0eaf77d3c9297155

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-36917

Description

Affected Products

References