AZL-62633

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-62633.json

JSON Data

https://api.test.osv.dev/v1/vulns/AZL-62633

Upstream

CVE-2024-57875

Published

2025-01-11T15:15:07Z

Modified

2026-04-01T05:20:07.276547Z

Summary

CVE-2024-57875 affecting package kernel 6.6.126.1-1

Details

In the Linux kernel, the following vulnerability has been resolved:

block: RCU protect disk->convzonesbitmap

Ensure that a disk revalidation changing the conventional zones bitmap of a disk does not cause invalid memory references when using the diskzoneisconv() helper by RCU protecting the disk->convzones_bitmap pointer.

diskzoneisconv() is modified to operate under the RCU read lock and the function disksetconvzonesbitmap() is added to update a disk convzonesbitmap pointer using rcureplacepointer() with the disk zonewplugs_lock spinlock held.

diskfreezoneresources() is modified to call diskupdatezoneresources() with a NULL bitmap pointer to free the disk convzonesbitmap. disksetconvzonesbitmap() is also used in diskupdatezone_resources() to set the new (revalidated) bitmap and free the old one.

References

https://nvd.nist.gov/vuln/detail/CVE-2024-57875

Affected packages

Azure Linux:3 / kernel

Package

Name: kernel
Purl: pkg:rpm/azure-linux/kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Last affected

6.6.126.1-1

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-62633.json"