CVE-2024-40971
Published: Jul 12, 2024
Modified: May 12, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: f2fs: remove clear SB_INLINECRYPT flag in default_options In f2fs_remount, SB_INLINECRYPT flag will be clear and re-set. If create new file or open file during this gap, these files will not use inlinecrypt. Worse case, it may lead to data corruption if wrappedkey_v0 is enable. Thread A: Thread B: -f2fs_remount -f2fs_file_open or f2fs_new_inode -default_options <- clear SB_INLINECRYPT flag -fscrypt_select_encryption_impl -parse_options <- set SB_INLINECRYPT again
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 98e4da8ca301e062d79ae168c67e56f3c3de3ce4 - < 38a82c8d00638bb642bef787eb1d5e0e4d3b7d71affected 98e4da8ca301e062d79ae168c67e56f3c3de3ce4 - < 724429db09e21ee153fef35e34342279d33df6aeaffected 98e4da8ca301e062d79ae168c67e56f3c3de3ce4 - < a9cea0489c562c97cd56bb345e78939f9909e7f4affected 98e4da8ca301e062d79ae168c67e56f3c3de3ce4 - < eddeb8d941d5be11a9da5637dbe81ac37e8449a2affected 98e4da8ca301e062d79ae168c67e56f3c3de3ce4 - < ae39c8ec4250d2a35ddaab1c40faacfec306ff66+1 more versions |
Linux | Linux | affected 3.8unaffected 0 - < 3.8unaffected 5.10.221 - <= 5.10.*unaffected 5.15.162 - <= 5.15.*unaffected 6.1.96 - <= 6.1.*+3 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now