In the Linux kernel, the following vulnerability has been resolved:
btrfs: fix uninitialized pointer free on readallocone_name() error
The function readalloconename() does not initialize the name field of the passed fscryptstr struct if kmalloc fails to allocate the corresponding buffer. Thus, it is not guaranteed that fscrypt_str.name is initialized when freeing it.
This is a follow-up to the linked patch that fixes the remaining instances of the bug introduced by commit e43eec81c516 ("btrfs: use struct qstr instead of name and namelen pairs").
[ { "signature_type": "Function", "id": "CVE-2024-50087-0b6c2266", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7fc7c47b9ba0cf2d192f2117a64b24881b0b577f", "signature_version": "v1", "target": { "function": "replay_one_name", "file": "fs/btrfs/tree-log.c" }, "digest": { "function_hash": "161143498161468682530556077028709778439", "length": 2353.0 }, "deprecated": false }, { "signature_type": "Function", "id": "CVE-2024-50087-19b29ab9", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@1ec28de5e476913ae51f909660b4447eddb28838", "signature_version": "v1", "target": { "function": "check_item_in_log", "file": "fs/btrfs/tree-log.c" }, "digest": { "function_hash": "204700757686159170301283950228014287515", "length": 1174.0 }, "deprecated": false }, { "signature_type": "Function", "id": "CVE-2024-50087-6f7f503b", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@2ab5e243c2266c841e0f6904fad1514b18eaf510", "signature_version": "v1", "target": { "function": "check_item_in_log", "file": "fs/btrfs/tree-log.c" }, "digest": { "function_hash": "204700757686159170301283950228014287515", "length": 1174.0 }, "deprecated": false }, { "signature_type": "Line", "id": "CVE-2024-50087-7c3ba0c4", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7fc7c47b9ba0cf2d192f2117a64b24881b0b577f", "signature_version": "v1", "target": { "file": "fs/btrfs/tree-log.c" }, "digest": { "threshold": 0.9, "line_hashes": [ "336264753889495429914583377651928832276", "282034787969319888244311406395257187589", "54653768072317741261884810650257323065", "100606243863783428243718209673384476495", "328280257929352895161937902904975777183", "61364728568386861195060549795094919769", "95791493555820415850794575714116631387", "100732066857911744305491591137975366916" ] }, "deprecated": false }, { "signature_type": "Function", "id": "CVE-2024-50087-992a6400", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b37de9491f140a0ff125c27dd1050185c3accbc1", "signature_version": "v1", "target": { "function": "check_item_in_log", "file": "fs/btrfs/tree-log.c" }, "digest": { "function_hash": "204700757686159170301283950228014287515", "length": 1174.0 }, "deprecated": false }, { "signature_type": "Function", "id": "CVE-2024-50087-9d8cde1a", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@1ec28de5e476913ae51f909660b4447eddb28838", "signature_version": "v1", "target": { "function": "replay_one_name", "file": "fs/btrfs/tree-log.c" }, "digest": { "function_hash": "319080072187460918340298187495377005733", "length": 2345.0 }, "deprecated": false }, { "signature_type": "Line", "id": "CVE-2024-50087-a0b440ee", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@1ec28de5e476913ae51f909660b4447eddb28838", "signature_version": "v1", "target": { "file": "fs/btrfs/tree-log.c" }, "digest": { "threshold": 0.9, "line_hashes": [ "336264753889495429914583377651928832276", "282034787969319888244311406395257187589", "54653768072317741261884810650257323065", "100606243863783428243718209673384476495", "328280257929352895161937902904975777183", "61364728568386861195060549795094919769", "95791493555820415850794575714116631387", "100732066857911744305491591137975366916" ] }, "deprecated": false }, { "signature_type": "Function", "id": "CVE-2024-50087-a899b8cc", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7fc7c47b9ba0cf2d192f2117a64b24881b0b577f", "signature_version": "v1", "target": { "function": "check_item_in_log", "file": "fs/btrfs/tree-log.c" }, "digest": { "function_hash": "204700757686159170301283950228014287515", "length": 1174.0 }, "deprecated": false }, { "signature_type": "Line", "id": "CVE-2024-50087-b1a1667d", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@2ab5e243c2266c841e0f6904fad1514b18eaf510", "signature_version": "v1", "target": { "file": "fs/btrfs/tree-log.c" }, "digest": { "threshold": 0.9, "line_hashes": [ "336264753889495429914583377651928832276", "282034787969319888244311406395257187589", "54653768072317741261884810650257323065", "100606243863783428243718209673384476495", "328280257929352895161937902904975777183", "61364728568386861195060549795094919769", "95791493555820415850794575714116631387", "100732066857911744305491591137975366916" ] }, "deprecated": false }, { "signature_type": "Function", "id": "CVE-2024-50087-c2fe2c1b", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@2ab5e243c2266c841e0f6904fad1514b18eaf510", "signature_version": "v1", "target": { "function": "replay_one_name", "file": "fs/btrfs/tree-log.c" }, "digest": { "function_hash": "319080072187460918340298187495377005733", "length": 2345.0 }, "deprecated": false }, { "signature_type": "Line", "id": "CVE-2024-50087-ec6e7734", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b37de9491f140a0ff125c27dd1050185c3accbc1", "signature_version": "v1", "target": { "file": "fs/btrfs/tree-log.c" }, "digest": { "threshold": 0.9, "line_hashes": [ "336264753889495429914583377651928832276", "282034787969319888244311406395257187589", "54653768072317741261884810650257323065", "100606243863783428243718209673384476495", "328280257929352895161937902904975777183", "61364728568386861195060549795094919769", "95791493555820415850794575714116631387", "100732066857911744305491591137975366916" ] }, "deprecated": false }, { "signature_type": "Function", "id": "CVE-2024-50087-ed4fe113", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b37de9491f140a0ff125c27dd1050185c3accbc1", "signature_version": "v1", "target": { "function": "replay_one_name", "file": "fs/btrfs/tree-log.c" }, "digest": { "function_hash": "161143498161468682530556077028709778439", "length": 2353.0 }, "deprecated": false } ]