CVE-2024-47726

Severity

65%

Complexity

27%

Confidentiality

60%

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to wait dio completion It should wait all existing dio write IOs before block removal, otherwise, previous direct write IO may overwrite data in the block which may be reused by other inode.

CVSS 3.1 Base Score 6.5. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N).

Overview

First reported 4 months ago

2024-10-21 13:15:00

Last updated 3 months ago

2024-10-24 14:24:00

Affected Software

Linux Kernel

References

https://git.kernel.org/stable/c/e3db757ff9b7101ae68650ac5f6dd5743b68164e

https://git.kernel.org/stable/c/96cfeb0389530ae32ade8a48ae3ae1ac3b6c009d

https://git.kernel.org/stable/c/e3db757ff9b7101ae68650ac5f6dd5743b68164e

Patch

https://git.kernel.org/stable/c/96cfeb0389530ae32ade8a48ae3ae1ac3b6c009d

Patch

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.