CVE-2024-50091
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-50091
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-50091.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-50091
- Downstream
- Related
- Published
- 2024-11-05T17:04:55Z
- Modified
- 2025-10-15T01:27:25.388115Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- dm vdo: don't refer to dedupe_context after releasing it
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
dm vdo: don't refer to dedupe_context after releasing it
Clear the dedupecontext pointer in a datavio whenever ownership of the context is lost, so that vdo can't examine it accidentally.
- References
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedcfaf07fae7a262865a67b6010eef3bc0a1ae50b2Fixed63ef073084c67878d7a92e15ad055172da3f05a3
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedcfaf07fae7a262865a67b6010eef3bc0a1ae50b2Fixed0808ebf2f80b962e75741a41ced372a7116f1e26
Affected versions
v6.*
v6.10
v6.10-rc1
v6.10-rc2
v6.10-rc3
v6.10-rc4
v6.10-rc5
v6.10-rc6
v6.10-rc7
v6.11
v6.11-rc1
v6.11-rc2
v6.11-rc3
v6.11-rc4
v6.11-rc5
v6.11-rc6
v6.11-rc7
v6.11.1
v6.11.2
v6.11.3
v6.8
v6.8-rc4
v6.8-rc5
v6.8-rc6
v6.8-rc7
v6.9
v6.9-rc1
v6.9-rc2
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7
Database specific
{
"vanir_signatures": [
{
"target": {
"file": "drivers/md/dm-vdo/dedupe.c",
"function": "process_update_result"
},
"id": "CVE-2024-50091-0fc37909",
"signature_version": "v1",
"digest": {
"length": 204.0,
"function_hash": "107724080679483378881715198527442543183"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0808ebf2f80b962e75741a41ced372a7116f1e26",
"signature_type": "Function"
},
{
"target": {
"file": "drivers/md/dm-vdo/dedupe.c",
"function": "timeout_index_operations_callback"
},
"id": "CVE-2024-50091-2ebcb42e",
"signature_version": "v1",
"digest": {
"length": 682.0,
"function_hash": "269763006723706293387142560009645458748"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0808ebf2f80b962e75741a41ced372a7116f1e26",
"signature_type": "Function"
},
{
"target": {
"file": "drivers/md/dm-vdo/dedupe.c"
},
"id": "CVE-2024-50091-727d2e13",
"signature_version": "v1",
"digest": {
"threshold": 0.9,
"line_hashes": [
"84323949251694242421944287664777737814",
"169329659719090551270200111413207282312",
"2570842354284311226446664647109374311",
"175784533413147595933697516884520971919",
"334508179495548448802088936938393747079",
"221029785066323219814730702653318839903",
"132696839910780575976445463685663891602",
"277629662640014437594926255437372584021",
"153092560380620792778663950395578901583",
"267978223516704678900838368229846149029",
"96882027395394439963327783615768417756"
]
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0808ebf2f80b962e75741a41ced372a7116f1e26",
"signature_type": "Line"
},
{
"target": {
"file": "drivers/md/dm-vdo/dedupe.c"
},
"id": "CVE-2024-50091-a56cdf06",
"signature_version": "v1",
"digest": {
"threshold": 0.9,
"line_hashes": [
"84323949251694242421944287664777737814",
"169329659719090551270200111413207282312",
"2570842354284311226446664647109374311",
"175784533413147595933697516884520971919",
"334508179495548448802088936938393747079",
"221029785066323219814730702653318839903",
"132696839910780575976445463685663891602",
"277629662640014437594926255437372584021",
"153092560380620792778663950395578901583",
"267978223516704678900838368229846149029",
"96882027395394439963327783615768417756"
]
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@63ef073084c67878d7a92e15ad055172da3f05a3",
"signature_type": "Line"
},
{
"target": {
"file": "drivers/md/dm-vdo/dedupe.c",
"function": "process_query_result"
},
"id": "CVE-2024-50091-b0991f9e",
"signature_version": "v1",
"digest": {
"length": 249.0,
"function_hash": "175075394147261169328574677236664470782"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0808ebf2f80b962e75741a41ced372a7116f1e26",
"signature_type": "Function"
},
{
"target": {
"file": "drivers/md/dm-vdo/dedupe.c",
"function": "process_query_result"
},
"id": "CVE-2024-50091-c8138380",
"signature_version": "v1",
"digest": {
"length": 249.0,
"function_hash": "175075394147261169328574677236664470782"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@63ef073084c67878d7a92e15ad055172da3f05a3",
"signature_type": "Function"
},
{
"target": {
"file": "drivers/md/dm-vdo/dedupe.c",
"function": "process_update_result"
},
"id": "CVE-2024-50091-d09c841a",
"signature_version": "v1",
"digest": {
"length": 204.0,
"function_hash": "107724080679483378881715198527442543183"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@63ef073084c67878d7a92e15ad055172da3f05a3",
"signature_type": "Function"
},
{
"target": {
"file": "drivers/md/dm-vdo/dedupe.c",
"function": "timeout_index_operations_callback"
},
"id": "CVE-2024-50091-d7a20186",
"signature_version": "v1",
"digest": {
"length": 682.0,
"function_hash": "269763006723706293387142560009645458748"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@63ef073084c67878d7a92e15ad055172da3f05a3",
"signature_type": "Function"
}
]
}