cve/rejected/2024/CVE-2024-47725.json - pub/scm/linux/security/vulns - Git at Google

 {
    "containers": {
       "cna": {
          "providerMetadata": {
             "orgId": "f4215fc3-5b6b-47ff-a258-f7189bd81038"
          },
          "descriptions": [
             {
                "lang": "en",
                "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm-verity: restart or panic on an I/O error\n\nMaxim Suhanov reported that dm-verity doesn't crash if an I/O error\nhappens. In theory, this could be used to subvert security, because an\nattacker can create sectors that return error with the Write Uncorrectable\ncommand. Some programs may misbehave if they have to deal with EIO.\n\nThis commit fixes dm-verity, so that if \"panic_on_corruption\" or\n\"restart_on_corruption\" was specified and an I/O error happens, the\nmachine will panic or restart.\n\nThis commit also changes kernel_restart to emergency_restart -\nkernel_restart calls reboot notifiers and these reboot notifiers may wait\nfor the bio that failed. emergency_restart doesn't call the notifiers."
             }
          ],
          "affected": [
             {
                "product": "Linux",
                "vendor": "Linux",
                "defaultStatus": "unaffected",
                "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
                "programFiles": [
                   "drivers/md/dm-verity-target.c"
                ],
                "versions": [
                   {
                      "version": "1da177e4c3f4",
                      "lessThan": "cada2646b748",
                      "status": "affected",
                      "versionType": "git"
                   },
                   {
                      "version": "1da177e4c3f4",
                      "lessThan": "b332bcca5914",
                      "status": "affected",
                      "versionType": "git"
                   },
                   {
                      "version": "1da177e4c3f4",
                      "lessThan": "338b32a232bb",
                      "status": "affected",
                      "versionType": "git"
                   },
                   {
                      "version": "1da177e4c3f4",
                      "lessThan": "e6a3531dd542",
                      "status": "affected",
                      "versionType": "git"
                   }
                ]
             },
             {
                "product": "Linux",
                "vendor": "Linux",
                "defaultStatus": "affected",
                "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
                "programFiles": [
                   "drivers/md/dm-verity-target.c"
                ],
                "versions": [
                   {
                      "version": "6.6.54",
                      "lessThanOrEqual": "6.6.*",
                      "status": "unaffected",
                      "versionType": "custom"
                   },
                   {
                      "version": "6.10.13",
                      "lessThanOrEqual": "6.10.*",
                      "status": "unaffected",
                      "versionType": "custom"
                   },
                   {
                      "version": "6.11.2",
                      "lessThanOrEqual": "6.11.*",
                      "status": "unaffected",
                      "versionType": "custom"
                   },
                   {
                      "version": "6.12-rc1",
                      "lessThanOrEqual": "*",
                      "status": "unaffected",
                      "versionType": "original_commit_for_fix"
                   }
                ]
             }
          ],
          "references": [
             {
                "url": "https://git.kernel.org/stable/c/cada2646b7483cce370eb3b046659df31d9d34d1"
             },
             {
                "url": "https://git.kernel.org/stable/c/b332bcca59143cfdd000957f8b78c28dd2ac1da4"
             },
             {
                "url": "https://git.kernel.org/stable/c/338b32a232bbee39e52dd1486cbc0c9f458d4d69"
             },
             {
                "url": "https://git.kernel.org/stable/c/e6a3531dd542cb127c8de32ab1e54a48ae19962b"
             }
          ],
          "title": "dm-verity: restart or panic on an I/O error",
          "x_generator": {
             "engine": "bippy-c9c4e1df01b2"
          }
       }
    },
    "cveMetadata": {
       "assignerOrgId": "f4215fc3-5b6b-47ff-a258-f7189bd81038",
       "cveID": "CVE-2024-47725",
       "requesterUserId": "gregkh@kernel.org",
       "serial": "1",
       "state": "PUBLISHED"
    },
    "dataType": "CVE_RECORD",
    "dataVersion": "5.0"
 }
	{
	"containers": {
	"cna": {
	"providerMetadata": {
	"orgId": "f4215fc3-5b6b-47ff-a258-f7189bd81038"
	},
	"descriptions": [
	{
	"lang": "en",
	"value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm-verity: restart or panic on an I/O error\n\nMaxim Suhanov reported that dm-verity doesn't crash if an I/O error\nhappens. In theory, this could be used to subvert security, because an\nattacker can create sectors that return error with the Write Uncorrectable\ncommand. Some programs may misbehave if they have to deal with EIO.\n\nThis commit fixes dm-verity, so that if \"panic_on_corruption\" or\n\"restart_on_corruption\" was specified and an I/O error happens, the\nmachine will panic or restart.\n\nThis commit also changes kernel_restart to emergency_restart -\nkernel_restart calls reboot notifiers and these reboot notifiers may wait\nfor the bio that failed. emergency_restart doesn't call the notifiers."
	}
	],
	"affected": [
	{
	"product": "Linux",
	"vendor": "Linux",
	"defaultStatus": "unaffected",
	"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
	"programFiles": [
	"drivers/md/dm-verity-target.c"
	],
	"versions": [
	{
	"version": "1da177e4c3f4",
	"lessThan": "cada2646b748",
	"status": "affected",
	"versionType": "git"
	},
	{
	"version": "1da177e4c3f4",
	"lessThan": "b332bcca5914",
	"status": "affected",
	"versionType": "git"
	},
	{
	"version": "1da177e4c3f4",
	"lessThan": "338b32a232bb",
	"status": "affected",
	"versionType": "git"
	},
	{
	"version": "1da177e4c3f4",
	"lessThan": "e6a3531dd542",
	"status": "affected",
	"versionType": "git"
	}
	]
	},
	{
	"product": "Linux",
	"vendor": "Linux",
	"defaultStatus": "affected",
	"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
	"programFiles": [
	"drivers/md/dm-verity-target.c"
	],
	"versions": [
	{
	"version": "6.6.54",
	"lessThanOrEqual": "6.6.*",
	"status": "unaffected",
	"versionType": "custom"
	},
	{
	"version": "6.10.13",
	"lessThanOrEqual": "6.10.*",
	"status": "unaffected",
	"versionType": "custom"
	},
	{
	"version": "6.11.2",
	"lessThanOrEqual": "6.11.*",
	"status": "unaffected",
	"versionType": "custom"
	},
	{
	"version": "6.12-rc1",
	"lessThanOrEqual": "*",
	"status": "unaffected",
	"versionType": "original_commit_for_fix"
	}
	]
	}
	],
	"references": [
	{
	"url": "https://git.kernel.org/stable/c/cada2646b7483cce370eb3b046659df31d9d34d1"
	},
	{
	"url": "https://git.kernel.org/stable/c/b332bcca59143cfdd000957f8b78c28dd2ac1da4"
	},
	{
	"url": "https://git.kernel.org/stable/c/338b32a232bbee39e52dd1486cbc0c9f458d4d69"
	},
	{
	"url": "https://git.kernel.org/stable/c/e6a3531dd542cb127c8de32ab1e54a48ae19962b"
	}
	],
	"title": "dm-verity: restart or panic on an I/O error",
	"x_generator": {
	"engine": "bippy-c9c4e1df01b2"
	}
	}
	},
	"cveMetadata": {
	"assignerOrgId": "f4215fc3-5b6b-47ff-a258-f7189bd81038",
	"cveID": "CVE-2024-47725",
	"requesterUserId": "gregkh@kernel.org",
	"serial": "1",
	"state": "PUBLISHED"
	},
	"dataType": "CVE_RECORD",
	"dataVersion": "5.0"
	}