CVE-2024-58094

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-58094

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-58094.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2024-58094

Downstream

BELL-CVE-2024-58094

DEBIAN-CVE-2024-58094

ECHO-e150-c1c0-59e0

OESA-2025-1462

OESA-2025-1463

OESA-2025-1464

OESA-2025-1465

OESA-2025-1466

SUSE-SU-2025:01707-1

SUSE-SU-2025:01919-1

SUSE-SU-2025:01951-1

SUSE-SU-2025:01964-1

SUSE-SU-2025:01967-1

UBUNTU-CVE-2024-58094

USN-7594-1

USN-7594-2

USN-7594-3

Related

Published

2025-04-16T15:15:53Z

Modified

2025-08-30T18:01:34Z

Summary

[none]

Details

In the Linux kernel, the following vulnerability has been resolved:

jfs: add check read-only before truncation in jfstruncatenolock()

Added a check for "read-only" mode in the jfs_truncate_nolock function to avoid errors related to writing to a read-only filesystem.

Call stack:

blockwritebegin() { jfswritefailed() { jfstruncate() { jfstruncatenolock() { txEnd() { ... log = JFSSBI(tblk->sb)->log; // (log == NULL)

If the isReadOnly(ip) condition is triggered in jfs_truncate_nolock, the function execution will stop, and no further data modification will occur. Instead, the xtTruncate function will be called with the "COMMIT_WMAP" flag, preventing modifications in "read-only" mode.

References

Affected packages