cve/published/2024/CVE-2024-43826.json - pub/scm/linux/security/vulns - Git at Google

 {
    "containers": {
       "cna": {
          "providerMetadata": {
             "orgId": "f4215fc3-5b6b-47ff-a258-f7189bd81038"
          },
          "descriptions": [
             {
                "lang": "en",
                "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfs: pass explicit offset/count to trace events\n\nnfs_folio_length is unsafe to use without having the folio locked and a\ncheck for a NULL ->f_mapping that protects against truncations and can\nlead to kernel crashes.  E.g. when running xfstests generic/065 with\nall nfs trace points enabled.\n\nFollow the model of the XFS trace points and pass in an explіcit offset\nand length.  This has the additional benefit that these values can\nbe more accurate as some of the users touch partial folio ranges."
             }
          ],
          "affected": [
             {
                "product": "Linux",
                "vendor": "Linux",
                "defaultStatus": "unaffected",
                "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
                "programFiles": [
                   "fs/nfs/file.c",
                   "fs/nfs/nfstrace.h",
                   "fs/nfs/read.c",
                   "fs/nfs/write.c"
                ],
                "versions": [
                   {
                      "version": "eb5654b3b89d5e836312cea9f3fdb49457852e89",
                      "lessThan": "387e6e9d110250946df4d4ebef9c2def5c7a4722",
                      "status": "affected",
                      "versionType": "git"
                   },
                   {
                      "version": "eb5654b3b89d5e836312cea9f3fdb49457852e89",
                      "lessThan": "fada32ed6dbc748f447c8d050a961b75d946055a",
                      "status": "affected",
                      "versionType": "git"
                   }
                ]
             },
             {
                "product": "Linux",
                "vendor": "Linux",
                "defaultStatus": "affected",
                "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
                "programFiles": [
                   "fs/nfs/file.c",
                   "fs/nfs/nfstrace.h",
                   "fs/nfs/read.c",
                   "fs/nfs/write.c"
                ],
                "versions": [
                   {
                      "version": "6.3",
                      "status": "affected"
                   },
                   {
                      "version": "0",
                      "lessThan": "6.3",
                      "status": "unaffected",
                      "versionType": "semver"
                   },
                   {
                      "version": "6.10.3",
                      "lessThanOrEqual": "6.10.*",
                      "status": "unaffected",
                      "versionType": "semver"
                   },
                   {
                      "version": "6.11",
                      "lessThanOrEqual": "*",
                      "status": "unaffected",
                      "versionType": "original_commit_for_fix"
                   }
                ]
             }
          ],
          "cpeApplicability": [
             {
                "nodes": [
                   {
                      "operator": "OR",
                      "negate": false,
                      "cpeMatch": [
                         {
                            "vulnerable": true,
                            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                            "versionStartIncluding": "6.3",
                            "versionEndExcluding": "6.10.3"
                         },
                         {
                            "vulnerable": true,
                            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                            "versionStartIncluding": "6.3",
                            "versionEndExcluding": "6.11"
                         }
                      ]
                   }
                ]
             }
          ],
          "references": [
             {
                "url": "https://git.kernel.org/stable/c/387e6e9d110250946df4d4ebef9c2def5c7a4722"
             },
             {
                "url": "https://git.kernel.org/stable/c/fada32ed6dbc748f447c8d050a961b75d946055a"
             }
          ],
          "title": "nfs: pass explicit offset/count to trace events",
          "x_generator": {
             "engine": "bippy-1.2.0"
          }
       }
    },
    "cveMetadata": {
       "assignerOrgId": "f4215fc3-5b6b-47ff-a258-f7189bd81038",
       "cveID": "CVE-2024-43826",
       "requesterUserId": "gregkh@kernel.org",
       "serial": "1",
       "state": "PUBLISHED"
    },
    "dataType": "CVE_RECORD",
    "dataVersion": "5.0"
 }
	{
	"containers": {
	"cna": {
	"providerMetadata": {
	"orgId": "f4215fc3-5b6b-47ff-a258-f7189bd81038"
	},
	"descriptions": [
	{
	"lang": "en",
	"value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfs: pass explicit offset/count to trace events\n\nnfs_folio_length is unsafe to use without having the folio locked and a\ncheck for a NULL ->f_mapping that protects against truncations and can\nlead to kernel crashes. E.g. when running xfstests generic/065 with\nall nfs trace points enabled.\n\nFollow the model of the XFS trace points and pass in an explіcit offset\nand length. This has the additional benefit that these values can\nbe more accurate as some of the users touch partial folio ranges."
	}
	],
	"affected": [
	{
	"product": "Linux",
	"vendor": "Linux",
	"defaultStatus": "unaffected",
	"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
	"programFiles": [
	"fs/nfs/file.c",
	"fs/nfs/nfstrace.h",
	"fs/nfs/read.c",
	"fs/nfs/write.c"
	],
	"versions": [
	{
	"version": "eb5654b3b89d5e836312cea9f3fdb49457852e89",
	"lessThan": "387e6e9d110250946df4d4ebef9c2def5c7a4722",
	"status": "affected",
	"versionType": "git"
	},
	{
	"version": "eb5654b3b89d5e836312cea9f3fdb49457852e89",
	"lessThan": "fada32ed6dbc748f447c8d050a961b75d946055a",
	"status": "affected",
	"versionType": "git"
	}
	]
	},
	{
	"product": "Linux",
	"vendor": "Linux",
	"defaultStatus": "affected",
	"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
	"programFiles": [
	"fs/nfs/file.c",
	"fs/nfs/nfstrace.h",
	"fs/nfs/read.c",
	"fs/nfs/write.c"
	],
	"versions": [
	{
	"version": "6.3",
	"status": "affected"
	},
	{
	"version": "0",
	"lessThan": "6.3",
	"status": "unaffected",
	"versionType": "semver"
	},
	{
	"version": "6.10.3",
	"lessThanOrEqual": "6.10.*",
	"status": "unaffected",
	"versionType": "semver"
	},
	{
	"version": "6.11",
	"lessThanOrEqual": "*",
	"status": "unaffected",
	"versionType": "original_commit_for_fix"
	}
	]
	}
	],
	"cpeApplicability": [
	{
	"nodes": [
	{
	"operator": "OR",
	"negate": false,
	"cpeMatch": [
	{
	"vulnerable": true,
	"criteria": "cpe:2.3:o:linux:linux_kernel::::::::",
	"versionStartIncluding": "6.3",
	"versionEndExcluding": "6.10.3"
	},
	{
	"vulnerable": true,
	"criteria": "cpe:2.3:o:linux:linux_kernel::::::::",
	"versionStartIncluding": "6.3",
	"versionEndExcluding": "6.11"
	}
	]
	}
	]
	}
	],
	"references": [
	{
	"url": "https://git.kernel.org/stable/c/387e6e9d110250946df4d4ebef9c2def5c7a4722"
	},
	{
	"url": "https://git.kernel.org/stable/c/fada32ed6dbc748f447c8d050a961b75d946055a"
	}
	],
	"title": "nfs: pass explicit offset/count to trace events",
	"x_generator": {
	"engine": "bippy-1.2.0"
	}
	}
	},
	"cveMetadata": {
	"assignerOrgId": "f4215fc3-5b6b-47ff-a258-f7189bd81038",
	"cveID": "CVE-2024-43826",
	"requesterUserId": "gregkh@kernel.org",
	"serial": "1",
	"state": "PUBLISHED"
	},
	"dataType": "CVE_RECORD",
	"dataVersion": "5.0"
	}