CVE-2024-56595

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2024-56595

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-56595.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2024-56595

Downstream

BELL-CVE-2024-56595

DEBIAN-CVE-2024-56595

DLA-4075-1

DLA-4076-1

MGASA-2025-0030

MGASA-2025-0032

OESA-2025-1065

OESA-2025-1066

OESA-2025-1078

OESA-2025-1079

SUSE-SU-2025:0289-1

SUSE-SU-2025:0428-1

SUSE-SU-2025:0499-1

SUSE-SU-2025:0556-1

SUSE-SU-2025:0557-1

SUSE-SU-2025:0577-1

SUSE-SU-2025:0577-2

SUSE-SU-2025:20165-1

SUSE-SU-2025:20166-1

SUSE-SU-2025:20248-1

SUSE-SU-2025:20249-1

Related

Published

2024-12-27T14:51:02.371Z

Modified

2026-05-15T11:54:01.821610404Z

Severity

7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree

Details

In the Linux kernel, the following vulnerability has been resolved:

jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree

When the value of lp is 0 at the beginning of the for loop, it will become negative in the next assignment and we should bail out.

Database specific

{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/56xxx/CVE-2024-56595.json"
}

References

Affected packages

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

2.6.12

Fixed

5.4.287

Type: ECOSYSTEM
Events: Introduced

5.5.0

Fixed

5.10.231

Type: ECOSYSTEM
Events: Introduced

5.11.0

Fixed

5.15.174

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

6.1.120

Type: ECOSYSTEM
Events: Introduced

6.2.0

Fixed

6.6.66

Type: ECOSYSTEM
Events: Introduced

6.7.0

Fixed

6.12.5

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-56595.json"