CVE-2024-47723

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2024-47723
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-47723.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-47723
Downstream
Related
Published
2024-10-21T12:13:57.614Z
Modified
2026-03-20T12:39:12.493079Z
Summary
jfs: fix out-of-bounds in dbNextAG() and diAlloc()
Details

In the Linux kernel, the following vulnerability has been resolved:

jfs: fix out-of-bounds in dbNextAG() and diAlloc()

In dbNextAG() , there is no check for the case where bmp->db_numag is greater or same than MAXAG due to a polluted image, which causes an out-of-bounds. Therefore, a bounds check should be added in dbMount().

And in dbNextAG(), a check for the case where agpref is greater than bmp->db_numag should be added, so an out-of-bounds exception should be prevented.

Additionally, a check for the case where agno is greater or same than MAXAG should be added in diAlloc() to prevent out-of-bounds.

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/47xxx/CVE-2024-47723.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Fixed
d1017d2a0f3f16dc1db5120e7ddbe7c6680425b0
Fixed
5ad6284c8d433f8a213111c5c44ead4d9705b622
Fixed
0338e66cba272351ca9d7d03f3628e390e70963b
Fixed
ead82533278502428883085a787d5a00f15e5eb9
Fixed
6ce8b6ab44a8b5918c0ee373d4ad19d19017931b
Fixed
c1ba4b8ca799ff1d99d01f37d7ccb7d5ba5533d2
Fixed
128d5cfdcf844cb690c9295a3a1c1114c21fc15a
Fixed
96855f40e152989c9e7c20c4691ace5581098acc
Fixed
e63866a475562810500ea7f784099bfe341e761a

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-47723.json"