CVE-2024-26704Double Free in Linux

CWE-415Double Free33 documents8 sources
Severity
7.8HIGHNVD
OSV6.5OSV5.5
EPSS
0.0%
top 98.47%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
LinuxLinux KernelDebian Linux+1 more
Timeline
PublishedApr 3
Latest updateAug 14

Description

In the Linux kernel, the following vulnerability has been resolved: ext4: fix double-free of blocks due to wrong extents moved_len In ext4_move_extents(), moved_len is only updated when all moves are successfully executed, and only discards orig_inode and donor_inode preallocations when moved_len is not zero. When the loop fails to exit after successfully moving some extents, moved_len is not updated and remains at 0, so it does not discard the preallocations. If the moved extents overlap wit

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages5 packages

NVDlinux/linux_kernel3.184.19.307+7
Debianlinux/linux_kernel< 5.10.216-1+3
Ubuntulinux/linux_kernel< 5.4.0-181.201+3
CVEListV5linux/linuxfcf6b1b729bcd23f2b49a84fb33ffbb44712ee6ab4fbb89d722cbb16beaaea234b7230faaaf68c71+8
debiandebian/linux< linux 6.1.82-1 (bookworm)

Also affects: Debian Linux 10.0

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

15
OSV
linux-intel-iotg-5.15 vulnerabilities2024-06-11
OSV
linux-intel-iotg vulnerabilities2024-05-28
OSV
linux-aws-hwe vulnerabilities2024-05-23
OSV
linux-gcp vulnerabilities2024-05-21
OSV
linux-aws, linux-aws-5.15 vulnerabilities2024-05-20

📋Vendor Advisories

16
CISA ICS
Siemens SINEC OS2025-08-14
Ubuntu
Linux kernel (Intel IoTG) vulnerabilities2024-06-11
Ubuntu
Linux kernel (Intel IoTG) vulnerabilities2024-05-28
Ubuntu
Linux kernel (HWE) vulnerabilities2024-05-23
Ubuntu
Linux kernel (GCP) vulnerabilities2024-05-21

💬Community

1
Bugzilla
CVE-2024-26704 kernel: ext4: fix double-free of blocks due to wrong extents moved_len2024-04-03