CVE-2024-49983
- Source
- https://cve.org/CVERecord?id=CVE-2024-49983
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-49983.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-49983
- Downstream
- Related
- Published
- 2024-10-21T18:02:28.474Z
- Modified
- 2026-03-20T12:39:29.792817Z
- Summary
- ext4: drop ppath from ext4_ext_replay_update_ex() to avoid double-free
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
ext4: drop ppath from ext4extreplayupdateex() to avoid double-free
When calling ext4forcesplitextentat() in ext4extreplayupdateex(), the 'ppath' is updated but it is the 'path' that is freed, thus potentially triggering a double-free in the following process:
ext4extreplayupdateex ppath = path ext4forcesplitextentat(&ppath) ext4splitextentat ext4extinsertextent ext4extcreatenewleaf ext4extgrowindepth ext4findextent if (depth > path[0].pmaxdepth) kfree(path) ---> path First freed *orig_path = path = NULL ---> null ppath kfree(path) ---> path double-free !!!
So drop the unnecessary ppath and use path directly to avoid this problem. And use ext4findextent() directly to update path, avoiding unnecessary memory allocation and freeing. Also, propagate the error returned by ext4findextent() instead of using strange error codes.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/49xxx/CVE-2024-49983.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/1b558006d98b7b0b730027be0ee98973dd10ee0d
- https://git.kernel.org/stable/c/3ff710662e8d86a63a39b334e9ca0cb10e5c14b0
- https://git.kernel.org/stable/c/5c0f4cc84d3a601c99bc5e6e6eb1cbda542cce95
- https://git.kernel.org/stable/c/6367d3f04c69e2b8770b8137bd800e0784b0abbc
- https://git.kernel.org/stable/c/63adc9016917e6970fb0104ee5fd6770f02b2d80
- https://git.kernel.org/stable/c/8c26d9e53e5fbacda0732a577e97c5a5b7882aaf
- https://git.kernel.org/stable/c/a34bed978364114390162c27e50fca50791c568d
- https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
- https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/49xxx/CVE-2024-49983.json
- https://nvd.nist.gov/vuln/detail/CVE-2024-49983
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced8016e29f4362e285f0f7e38fadc61a5b7bdfdfa2Fixed8c26d9e53e5fbacda0732a577e97c5a5b7882aafFixeda34bed978364114390162c27e50fca50791c568dFixed6367d3f04c69e2b8770b8137bd800e0784b0abbcFixed1b558006d98b7b0b730027be0ee98973dd10ee0dFixed3ff710662e8d86a63a39b334e9ca0cb10e5c14b0Fixed63adc9016917e6970fb0104ee5fd6770f02b2d80Fixed5c0f4cc84d3a601c99bc5e6e6eb1cbda542cce95