CVE-2024-42299

If an NTFS file system is mounted to another system with different PAGESIZE from the original system, log->pagesize will change in logreplay(), but log->page{mask,bits} don't change correspondingly. This will cause a panic because "u32 bytes = log->pagesize - pageoff" will get a negative value in the later readlogpage().

Database specific

{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/42xxx/CVE-2024-42299.json"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

b46acd6a6a627d876898e1c84d3f84902264b445

Fixed

0484adcb5fbcadd9ba0fd4485c42630f72e97da9

Fixed

b90ceffdc975502bc085ce8e79c6adeff05f9521

Fixed

2cac0df3324b5e287d8020bc0708f7d2dec88a6f

Fixed

0a4ae2644e2a3b3b219aad9639fb2b0691d08420

Fixed

2fef55d8f78383c8e6d6d4c014b9597375132696

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-42299.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

5.15.0

Fixed

5.15.165

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

6.1.103

Type: ECOSYSTEM
Events: Introduced

6.2.0

Fixed

6.6.44

Type: ECOSYSTEM
Events: Introduced

6.7.0

Fixed

6.10.3

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-42299.json"