CVE-2024-50218

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-50218

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-50218.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2024-50218

Downstream

BELL-CVE-2024-50218

DEBIAN-CVE-2024-50218

DLA-4008-1

DLA-4075-1

DSA-5818-1

OESA-2024-2522

OESA-2024-2569

OESA-2024-2571

OESA-2024-2589

OESA-2025-1016

SUSE-SU-2024:4314-1

SUSE-SU-2024:4315-1

SUSE-SU-2024:4316-1

SUSE-SU-2024:4318-1

SUSE-SU-2024:4364-1

SUSE-SU-2024:4367-1

SUSE-SU-2024:4376-1

SUSE-SU-2024:4387-1

SUSE-SU-2025:0035-1

openSUSE-SU-2024:14500-1

openSUSE-SU-2025:14705-1

Related

Published

2024-11-09T11:15:07Z

Modified

2025-08-09T20:01:25Z

Summary

[none]

Details

In the Linux kernel, the following vulnerability has been resolved:

ocfs2: pass u64 to ocfs2truncateinline maybe overflow

Syzbot reported a kernel BUG in ocfs2truncateinline. There are two reasons for this: first, the parameter value passed is greater than ocfs2maxinlinedatawithxattr, second, the start and end parameters of ocfs2truncate_inline are "unsigned int".

So, we need to add a sanity check for bytestart and bytelen right before ocfs2truncateinline() in ocfs2removeinoderange(), if they are greater than ocfs2maxinlinedatawithxattr return -EINVAL.

References

Affected packages