CVE-2024-43828
Published: Aug 17, 2024
Modified: May 12, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: ext4: fix infinite loop when replaying fast_commit When doing fast_commit replay an infinite loop may occur due to an uninitialized extent_status struct. ext4_ext_determine_insert_hole() does not detect the replay and calls ext4_es_find_extent_range(), which will return immediately without initializing the 'es' variable. Because 'es' contains garbage, an integer overflow may happen causing an infinite loop in this function, easily reproducible using fstest generic/039. This commit fixes this issue by unconditionally initializing the structure in function ext4_es_find_extent_range(). Thanks to Zhang Yi, for figuring out the real problem!
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 8016e29f4362e285f0f7e38fadc61a5b7bdfdfa2 - < 5ed0496e383cb6de120e56991385dce70bbb87c1affected 8016e29f4362e285f0f7e38fadc61a5b7bdfdfa2 - < 0619f7750f2b178a1309808832ab20d85e0ad121affected 8016e29f4362e285f0f7e38fadc61a5b7bdfdfa2 - < 181e63cd595c688194e07332f9944b3a63193de2affected 8016e29f4362e285f0f7e38fadc61a5b7bdfdfa2 - < c6e67df64783e99a657ef2b8c834ba2bf54c539caffected 8016e29f4362e285f0f7e38fadc61a5b7bdfdfa2 - < 81f819c537d29932e4b9267f02411cbc8b355178+1 more versions |
Linux | Linux | affected 5.10unaffected 0 - < 5.10unaffected 5.10.224 - <= 5.10.*unaffected 5.15.165 - <= 5.15.*unaffected 6.1.103 - <= 6.1.*+3 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now