一、 漏洞 CVE-2024-50116 基础信息
漏洞标题
Linux nilfs2驱动缓冲延迟标志清除缺陷漏洞
来源:AIGC 神龙大模型
漏洞描述信息
在Linux内核中,已修复以下漏洞: nilfs2:修复由于未清除缓冲延迟标志而导致的内核错误 Syzbot报告称,在nilfs2读取一个损坏的文件系统镜像并降级为只读模式后,submit_bh_wbc()中的缓冲延迟标志的BUG_ON检查可能会失败,从而导致内核错误。 这是因为当清除缓冲状态标志以丢弃页面/页簇或缓冲头时,没有清除缓冲延迟标志。因此,修复此问题。 当扩展使用nilfs2自身的页面清除例程时,需要进行此修复。如果通过日志写入正常写入缓冲,则不会出现这种状态不一致的情况。
来源:AIGC 神龙大模型
CVSS信息
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
来源:AIGC 神龙大模型
漏洞类别
对异常条件的处理不恰当
来源:AIGC 神龙大模型
漏洞标题
nilfs2: fix kernel bug due to missing clearing of buffer delay flag
来源:美国国家漏洞数据库 NVD
漏洞描述信息
In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix kernel bug due to missing clearing of buffer delay flag Syzbot reported that after nilfs2 reads a corrupted file system image and degrades to read-only, the BUG_ON check for the buffer delay flag in submit_bh_wbc() may fail, causing a kernel bug. This is because the buffer delay flag is not cleared when clearing the buffer state flags to discard a page/folio or a buffer head. So, fix this. This became necessary when the use of nilfs2's own page clear routine was expanded. This state inconsistency does not occur if the buffer is written normally by log writing.
来源:美国国家漏洞数据库 NVD
CVSS信息
N/A
来源:美国国家漏洞数据库 NVD
漏洞类别
N/A
来源:美国国家漏洞数据库 NVD
漏洞标题
Linux kernel 安全漏洞
来源:中国国家信息安全漏洞库 CNNVD
漏洞描述信息
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞,该漏洞源于nilfs2模块在读取损坏的文件系统映像时未能正确处理缓冲区延迟标志,可能导致内核错误。
来源:中国国家信息安全漏洞库 CNNVD
CVSS信息
N/A
来源:中国国家信息安全漏洞库 CNNVD
漏洞类别
其他
来源:中国国家信息安全漏洞库 CNNVD
二、漏洞 CVE-2024-50116 的公开POC
# POC 描述 源链接 神龙链接
三、漏洞 CVE-2024-50116 的情报信息

  • 标题: nilfs2: fix kernel bug due to missing clearing of buffer delay flag - kernel/git/stable/linux.git - Linux kernel stable tree -- 🔗来源链接

    标签:

    神龙速读
    nilfs2: fix kernel bug due to missing clearing of buffer delay flag - kernel/git/stable/linux.git - Linux kernel stable tree

  • 标题: nilfs2: fix kernel bug due to missing clearing of buffer delay flag - kernel/git/stable/linux.git - Linux kernel stable tree -- 🔗来源链接

    标签:

    神龙速读
    nilfs2: fix kernel bug due to missing clearing of buffer delay flag - kernel/git/stable/linux.git - Linux kernel stable tree

  • 标题: nilfs2: fix kernel bug due to missing clearing of buffer delay flag - kernel/git/stable/linux.git - Linux kernel stable tree -- 🔗来源链接

    标签:

    神龙速读
    nilfs2: fix kernel bug due to missing clearing of buffer delay flag - kernel/git/stable/linux.git - Linux kernel stable tree

  • 标题: nilfs2: fix kernel bug due to missing clearing of buffer delay flag - kernel/git/stable/linux.git - Linux kernel stable tree -- 🔗来源链接

    标签:

    神龙速读
    nilfs2: fix kernel bug due to missing clearing of buffer delay flag - kernel/git/stable/linux.git - Linux kernel stable tree

  • 标题: nilfs2: fix kernel bug due to missing clearing of buffer delay flag - kernel/git/stable/linux.git - Linux kernel stable tree -- 🔗来源链接

    标签:

    神龙速读
    nilfs2: fix kernel bug due to missing clearing of buffer delay flag - kernel/git/stable/linux.git - Linux kernel stable tree

  • 标题: nilfs2: fix kernel bug due to missing clearing of buffer delay flag - kernel/git/stable/linux.git - Linux kernel stable tree -- 🔗来源链接

    标签:

    神龙速读
    nilfs2: fix kernel bug due to missing clearing of buffer delay flag - kernel/git/stable/linux.git - Linux kernel stable tree

  • 标题: nilfs2: fix kernel bug due to missing clearing of buffer delay flag - kernel/git/stable/linux.git - Linux kernel stable tree -- 🔗来源链接

    标签:

    神龙速读
    nilfs2: fix kernel bug due to missing clearing of buffer delay flag - kernel/git/stable/linux.git - Linux kernel stable tree

  • 标题: nilfs2: fix kernel bug due to missing clearing of buffer delay flag - kernel/git/stable/linux.git - Linux kernel stable tree -- 🔗来源链接

    标签:

    神龙速读
    nilfs2: fix kernel bug due to missing clearing of buffer delay flag - kernel/git/stable/linux.git - Linux kernel stable tree
  • https://nvd.nist.gov/vuln/detail/CVE-2024-50116