CVE-2024-42254
- Source
- https://cve.org/CVERecord?id=CVE-2024-42254
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-42254.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-42254
- Downstream
- Published
- 2024-08-08T08:49:14.289Z
- Modified
- 2026-03-09T23:51:01.578126Z
- Summary
- io_uring: fix error pbuf checking
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
io_uring: fix error pbuf checking
Syz reports a problem, which boils down to NULL vs ISERR inconsistent error handling in ioallocpbufring().
KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] RIP: 0010:__ioremovebuffers+0xac/0x700 iouring/kbuf.c:341 Call Trace: <TASK> ioputbl iouring/kbuf.c:378 [inline] iodestroybuffers+0x14e/0x490 iouring/kbuf.c:392 ioringctxfree+0xa00/0x1070 iouring/iouring.c:2613 ioringexitwork+0x80f/0x8a0 iouring/iouring.c:2844 processonework kernel/workqueue.c:3231 [inline] processscheduledworks+0xa2c/0x1830 kernel/workqueue.c:3312 workerthread+0x86d/0xd40 kernel/workqueue.c:3390 kthread+0x2f0/0x390 kernel/kthread.c:389 retfromfork+0x4b/0x80 arch/x86/kernel/process.c:147 retfromforkasm+0x1a/0x30 arch/x86/entry/entry64.S:244
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/42xxx/CVE-2024-42254.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/68d19af95a353f5e2b021602180b65b303eba99d
- https://git.kernel.org/stable/c/78aefac7efdffddf7889405b7c08e6e0f030fa35
- https://git.kernel.org/stable/c/bcc87d978b834c298bbdd9c52454c5d0a946e97e
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/42xxx/CVE-2024-42254.json
- https://nvd.nist.gov/vuln/detail/CVE-2024-42254
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced46b1b3d81a7e99574e1a2f914086bc2fe382d79dFixed78aefac7efdffddf7889405b7c08e6e0f030fa35
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced87585b05757dc70545efb434669708d276125559Fixed68d19af95a353f5e2b021602180b65b303eba99dFixedbcc87d978b834c298bbdd9c52454c5d0a946e97e