CVE-2024-43828

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2024-43828
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-43828.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-43828
Downstream
Related
Published
2024-08-17T09:21:47.429Z
Modified
2026-03-11T07:53:10.571527Z
Summary
ext4: fix infinite loop when replaying fast_commit
Details

In the Linux kernel, the following vulnerability has been resolved:

ext4: fix infinite loop when replaying fast_commit

When doing fastcommit replay an infinite loop may occur due to an uninitialized extentstatus struct. ext4extdetermineinserthole() does not detect the replay and calls ext4esfindextentrange(), which will return immediately without initializing the 'es' variable.

Because 'es' contains garbage, an integer overflow may happen causing an infinite loop in this function, easily reproducible using fstest generic/039.

This commit fixes this issue by unconditionally initializing the structure in function ext4esfindextentrange().

Thanks to Zhang Yi, for figuring out the real problem!

Database specific 
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/43xxx/CVE-2024-43828.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
8016e29f4362e285f0f7e38fadc61a5b7bdfdfa2
Fixed
5ed0496e383cb6de120e56991385dce70bbb87c1
Fixed
0619f7750f2b178a1309808832ab20d85e0ad121
Fixed
181e63cd595c688194e07332f9944b3a63193de2
Fixed
c6e67df64783e99a657ef2b8c834ba2bf54c539c
Fixed
81f819c537d29932e4b9267f02411cbc8b355178
Fixed
907c3fe532253a6ef4eb9c4d67efb71fab58c706

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-43828.json"