CVE-2024-43885

NVD Published Date: August 26, 2024 at 11:15 AM
NVD Last Modified: August 27, 2024 at 02:37 PM
Download Patch
Vulnerability ID
CVE-2024-43885
Severity
MEDIUM
Severity Score
5.5
Summary
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix double inode unlock for direct IO sync writes If we do a direct IO sync write, at btrfs_sync_file(), and we need to skip inode logging or we get an error starting a transaction or an error when flushing delalloc, we end up unlocking the inode when we shouldn't under the 'out_release_extents' label, and then unlock it again at btrfs_direct_write(). Fix that by checking if we have to skip inode unlocking under that label.
Exploits
-
Metasploit Payload
-
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE ID
CWE-667

Recent Publish

CVE-2024-44931

CVE-2024-43899

CVE-2024-43902

CVE-2024-43900

CVE-2024-44935

CVE-2024-43890

See SecOps Solution
in action

Schedule Demo